Results 1 to 4 of 4
  1. #1
    Join Date
    May 2007

    Cisco ASA 5505 Firewall questions

    Hi guys,

    Cisco ASA 5505 Firewall - Does it help agains DDOS attack?


  2. #2
    Join Date
    Oct 2007

    You can check if you have Ddos attack on your server using

    netstat -anp|grep tcp|awk '{print $5}'| cut -d : -f1 | sort | uniq -c | sort -n .

    I feel you should check this link too about this question and revert back
    Alan John

  3. #3
    If cpanel is under attack, go to directory /usr/local/apache/domlogs.Use the command grep'408 -' *.com > output_file_name.


  4. #4
    Join Date
    Jun 2006
    Not sure why the above two posters are trying to add here. Your question was whether the Cisco 5505 helps against DDoS attacks and technically the answer is no.

    It can help filter depending on the rules you add and decent for DoS attacks but it's merely a firewall. The common misconception about DDoS protection is that it's a firewall. Yes, you do blocking, but it is normally in the form of dynamic blocking based on granular packet or deep packet inspection. Products built for DDoS protection are usually geared at that function / IDS functions entirely. It requires a combination of packet inspection (anomaly detection), known attack methods, and rate limiting.

    You won't find a cheap (<$2-3k) *purchased* solution for real DDoS protection. You can find things that will assist with protection but not provide protection that would hold up against a large attack.

    If you want *REAL* protection then you'd need a custom solution or a high-end commercial product such as:
    Intruguard / ArborFlow Product lines

    Mid to High range protection would be something like Cisco Guard/Netscreen/TopLayer appliances.
    Last edited by FiberPeer; 08-13-2009 at 05:25 AM.
    FiberPeer.Com | | REAL DDoS Protection | Cloud Hosting | VPS | Dedicated Servers | High Bandwidth Hosting | 1Gbps-10Gbps Unmetered
    FiberPeer DDoS Mitigation | ethProxy Upgraded! | 14-Years Experience | Emergency 24/7 Support
    Visit us @

Similar Threads

  1. Cisco ASA 5505 vs. Juniper Netscreen 5GT
    By HNLV in forum Colocation and Data Centers
    Replies: 15
    Last Post: 11-06-2007, 01:58 PM
  2. Cisco ASA 5505 suitable for low bandwidth colo?
    By Qgyen in forum Colocation and Data Centers
    Replies: 4
    Last Post: 09-20-2007, 03:05 PM
  3. Cisco ASA 5505
    By FAZO in forum Dedicated Server
    Replies: 0
    Last Post: 08-06-2007, 04:28 PM
  4. No Cisco Supervisor III (5505 series) console connection
    By vividhosting in forum Colocation and Data Centers
    Replies: 7
    Last Post: 01-13-2006, 11:32 PM
  5. opinions wanted: Cisco Catalyst 5505
    By NewtSys in forum Hosting Security and Technology
    Replies: 0
    Last Post: 10-23-2003, 10:36 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts