Nexusguard Origin Protection secures all backend network elements, including the origin of applications, network infrastructure, and the backend IPs typically associated with proxy solutions. It is highly suitable for organizations that cannot afford any downtime of assets running their own network.

Implemented via tunneling and making use of BGP-anycast routing, Origin Protection guards network resources against all volumetric and protocol-based DDoS attacks, such as UDP, SMTP and SYN floods.

Nexusguard Origin Protection diagram

Features & Benefits

Superior redundancy

BGP-anycast Routing

  • BGP-anycast routing[1] ensures superior redundancy in mitigation and preserves a significant amount of IP addresses since the same pool is shared among multiple locations.
Individual IP Support

Subnet and Individual IP Protection

  • Protects the entire Class C subnet as well as services and protocols running on individual IP addresses.
Continuous Processing

Continuous Processing

  • Allows for continuous processing of all incoming (asymmetric) and outgoing traffic (symmetric) in order to take immediate action.

Automatic Mitigation

  • Enables a precise and speedy response to attacks via automatic mitigation and traffic policing.

Remote DDoS Monitoring and Detection

Remote DDoS Monitoring and Detection

  • Provides coverage for clients lacking DDoS detection capabilities with remote DDoS Monitoring and Detection.

Secure GRE Tunnel

  • Forwards clean traffic to the Origin IP and returns outbound traffic from applications to users through a secure, two-way GRE tunnel.

Learn more about Nexusguard Origin Protection Service.

Contact our security experts today.

[1] For clients with their own Autonomous System Number (ASN), which is for use in BGP routing since each ASN identifies each network on the internet.