Distributed denial of service (DDoS) is achieved via zombie systems on the Internet. As more and more unprotected personal computers are connected to the Internet, hackers can easily exploit the vulnerability to plant certain codes into computers, and change them into tools (zombie systems) for DDoS attacks. To initiate a massive DDoS attack, hackers just need to send certain commands to the zombies and the zombies can perform the attack by themselves. The objects of DDoS attacks are not only systems, but also networks, including network linkage, routers and switches, and Domain Name Service (DNS) systems. With the development of zombie systems, massive traffic caused by DDoS attacks can lead to great load consumption on the application system or the network, critically reducing the availability of the network infrastructure and the application system.

For the current popular DDoS attacks, including unknown attack vectors, NSFOCUS independently develops a comprehensive product solution—Collapsar Anti-DDoS System (Collapsar ADS). By discovering in time various types of attack traffic from the background traffic, Collapsar rapidly filters or bypasses attack traffic to ensure the transmission of normal traffic. Collapsar can be easily deployed in various network environments. This not only avoids the single point of failure, but also guarantees the network performance and reliability. The integrated Collapsar system has the following advantages:

• Collapsar can prevent various DoS attacks based on the network layer, transmission layer, and application layer, such as SYN Flood, UDP Flood, UDP DNS Query Flood, (M) Stream Flood, ICMP Flood, HTTP Get Flood and connection flood.
• With the help of the embedded “intelligent multi-layered identification and purification matrix”, Collapsar implements the attack detection and filtration mechanism based on action anomaly instead of traditional rule set matching.
• Collapsar provides integrated functions of traffic detection, network monitoring, device management, and report generation.
• Collapsar supports flexible deployment modes suitable for complicated network environments.
• Through scheme designing, Collapsar can build up systems that have the traffic prevention capability of over 10Gbps.

There are lots of models for Collapsar series, including all-in-one products that integrate attack detection, attack defense, and monitoring management developed for medium and small enterprises, and comprehensive products suite solutions that are suitable for operators, IDCs, and large enterprises.

After five years of incessant technique innovation and product development, Collapsar ADS of NSFOCUS has become a leading brand of this field and gained wide praise among operators, IDCs, Internet companies, and government agencies. NSFOCUS has also become the unique professional company in China that can provide anti-DDoS solutions in the field.