Portal Demo for Cleanpipe end-customer (CP)

[Audio] Portal Demo for Cleanpipe end-customer (CP) ‹#›/22 Welcome to our Cleanpipe dashboard demo powered by Nexusguard.

[Audio] ‹#›/22 To proceed, you will need to sign in into the portal.

[Audio] From the front dashboard you will be able to see the icon Clean Pipe. Click to enter into the service dashboard of Clean pipe.

[Audio] Site Profile tab Our "Site" Profile centralizes all your information and configurations, such as the CIDR block to protect.. Our solution's key advantage is the "HOST Profile" feature, which enables granular, per-server security. This feature solves a critical challenge: applying the correct security policy to each application type. Instead of using a one-size-fits-all approach, you can now create tailored detection and mitigation policies for individual hosts. An example we can share where you have 2 different server functionality like DNS Server and Web Server. This means your DNS server gets the exact protection it needs, distinct from your web server, database server, or any other critical asset, ensuring more robust and effective security..

[Audio] Dashboard tab Another key tab is located in the top-right corner 2nd icon which is the dashboard tab. Here, you can monitor real-time incoming traffic alongside the active mitigation profile.

[Audio] You may filter your view by hour, day, week, month or according to the pps.

[Audio] The filtered view generates a Network Summary, displaying normal traffic data categorized by Source Countries and AS Numbers Applications and Protocols in use Visitor IP addresses And any detected Attack Types.

[Audio] Each category provides detailed information on click. For example, clicking AS Number displays the Autonomous System (ASN) of source IPs, identifying the networks your normal traffic originates from.

[Audio] DDoS Alert Annual Event Summary Monthly Summary Event To view a log of all DDoS events, click the "DDoS Alert" button (highlighted in the second red box).

[Audio] ‹#›/22 Inside the Annual Event Summary, you can move over to view all details of attack information..

[Audio] ‹#›/22 Next is Monthly Summary, you can view the types of attack during the month..

[Audio] ‹#›/22 By clicking "Target Host", you can find which host had been attacked the most..

[Audio] ‹#›/22 Below is the "Event" viewer, by clicking the triangle, you can view more. By clicking small triangle to view more attack types and click to select to view/unview the particular attack type. When mouse over, you can see more details on the attack types on the attack graph..

[Audio] ‹#›/22 Inside the details of the event below, you can see more details on the protocol "Traffic Pattern" of the attack and the associated size..

[Audio] ‹#›/22 Below also show the Protocol size statistic, one kind of attack will use the same size, so that we can easy to use the size to mitigate all botnet attack..

[Audio] ‹#›/22 Here is the Threat Map which show us the source of the regions..

[Audio] Policy tab Action for each host profile ‹#›/22 The Policy tab provides a centralized view of all detection and mitigation policies for both Site and Host Profiles. From this interface, you can configure specific detection and mitigation methods. If a policy change is required, please submit a ticket through your service provider...

[Audio] Detection tab ‹#›/22 Here is the sample detection policy for one of the site profile.

[Audio] ‹#›/22 Meanwhile here is the detection policy for host profile..

[Audio] ‹#›/22 While the system comes pre-configured with over 30 parameters optimized for most traffic patterns, we understand you might want to fine-tune them for your specific environment. For personalized recommendations, we suggest using the Network Threat Behaviour Detection (NTBD) app. Simply let it monitor your traffic for about a week, and it will provide tailored configuration values. Please contact your partner to get support setting this up. Regarding the Blackhole service (indicated by the arrow), its capacity is always designed to be larger than your attack coverage to ensure full protection. For instance, if your attack coverage is 10Gbps, your Blackhole capacity would typically be 12Gbps/10Mpps..

[Audio] Click the hide the “PASS” traffic Mitigation tab ‹#›/22 Click to view how many traffic had been mitigated by the platform by Hourly/Daily/Weekly/Monthly bps/pps. In order to view only Drop traffic, remember to click to hide the Pass traffic from the graph..

[Audio] Mitigation tools TCP Anti-flood ‹#›/22 Here are all the mitigation policy tools which can mitigate about 90% of known volumetric attack. You can click the mostly used mitigation tools is "Anti-Flood" and click "TCP Anti-flood" for TCP syn flooding. If there is attack alert generated and you suffer service impact without any mitigation graph, please contact your service provider for support..

[Audio] ‹#› Thank you for your time and participation in this demonstration. For any further inquiries, please contact your Cleanpipe Service Provider. This technology is powered by Nexusguard..