The DDoS Protection via Border Gateway Protocol can be implemented as standby or permanent solution. It requires a /24 or larger IP network for the rerouting. Within the standby integration, the customer as well as the Link11 Security Operation Center are able to announce the network in the event of an attack. By adding the Link11 Monitoring, the flow data of the local routers are constantly analyzed to ensure that the protection is activated automatically in case of an attack.
In the event of an attack, the network announcement reroutes the entire traffic via the Link11 DDoS Protection for analysis. It is also possible to announce smaller parts of the network affected by the attack. For example announcing only a /24 network from an existing /16 network to be forwarded to the Link11 protection. After a successfully blocked attack, the network is then rerouted directly back to the customer via a second announcement.