Wholesale Telecoms Aggregator, Australia

cs-wave-line

Broadband Wholesaler Improves Business by Protecting Downstream Networks from DDoS Threats

About the Wholesale Telecoms Aggregator

This customer sells wholesale products, technology, services, systems and processes to a wide variety of organizations so that they can operate as network providers, offering phone and internet connectivity to their users. It provides network services, end-user billing, payment processing and support to carriers, ISPs and virtual operators. Its customers range from SMBs and enterprises to large Communication Service Providers (CSP) and Internet Service Providers (ISP).

Challenge

The wholesaler wanted to develop its business as a network seller to CSPs and ISPs by providing them a value added service offering for their consumer and Enterprise customers that would allow them to grow their revenues. Consumer services were meant to assure subscriber QoE and grow ARPU, while enterprise services were meant to allow downstream business customers to offload their infrastructure and reduce their operational costs.

These business plans were threatened following a massive DDoS attack which brought the wholesaler’s infrastructure to a halt and resulted in significant damage to both reputation and service level agreements (SLA). The first order of business became to find an immediate solution to protect the network from malicious attack.

Due to the nature of wholesale business, they needed a network-level solution that would protect their valuable infrastructure and could also be sold to multiple downstream service providers. Scalability was essential to ensure protection could handle the expected increases in network users, bandwidth demand, application proliferation, and the growing number of threats that are constantly emerging.

Finally, the urgency of addressing these issues meant that the solution needed to be credible, proven, and with fast ROI, especially for downstream CSPs who planned to offer DDoS Protection as a service to their enterprise customers.

Solution

The solution needed to remedy the problem by mitigating attacks in seconds before any damage occurs. Threats could manifest themselves both as inbound and outbound attacks. Whilst individual outbound attacks are small, their combined volume could not only cause network congestion, but also could cause the blacklisting of IP networks, which would effectively terminate the network service to the downstream customers.

While some solutions were able to target and mitigate large attacks, few could handle large combinations of small DDoS attacks and at the same time mitigate these damaging volumetric attacks in seconds. The failure of traditional security approaches meant that behavior-based detection and mitigation was required.

The necessary solution required three key elements:

  • DDoS Protection to secure the network against attacks and assure service availability.
  • Ability for downstream ISPs to prioritize application delivery to ensure subscriber quality of experience.
  • Captive Portal Redirection to induce out-of-quota subscribers to top up immediately rather than wait for the next billing cycle

Deployment

Initially, Allot multiservice platform, powered by Allot Service Gateway, was providing DPI-based Traffic Management for application prioritization as well as captive portal redirection. Following the DDoS attack and after considering a variety of other options, Allot DDoS Protection and Bot Containment services – provided by Allot ServiceProtector licenses -were enabled in the same Allot Service Gateway platform. The ability to deploy multiple services in a single platform made the upgrade easy and provided the speed, versatility and security that the Wholesaler needed.

Benefits

  • Added Value; Increased Revenue
    Allot multiservice solutions enable the wholesaler’s downstream ISPs to offer more services to more users, which has stimulated growth and simultaneously has reduced non-payment from rates from 15% to 3%.
  • Assure Service Availability and QoE
    From its inline vantage point, Allot DDoS Protection solution detects and mitigates both inbound and outbound DDoS attacks in seconds, without diverting massive volumes of traffic to scrubbing centers. Likewise, downstream ISPs can offer DDoS protection to their enterprise customers.
  • Multiservuce value in one scalable solution
    While the Wholesaler has currently deployed Traffic Management and DDoS Protection solutions, Allot’s multiservice platform has the capacity to expand in a modular fashion, simply by adding new blades into the system. This makes the solution easy to maintain and upgrade, and avoids integration and management costs associated with deploying systems from multiple vendors.
  • Multi-tenancy capability
    Powerful multi-tenancy management enables the delivery and sell-through of services to a variety of different customers (tenants) with varying requirements. Tenants can range from consumers, small businesses and enterprises to hosting providers, MNVOs, large CSPs and ISPs.

Conclusion

By leveraging Allot’s know-how in multiservice delivery and successful telco deployments, the Wholesale Service Aggregator is able to provide a compelling sell-through proposition that allows downstream ISPs to assure network availability and user quality of experience as they differentiate their service offering and enhance profitability.

Allot enabled us to offer greater security to high-value customers and attract larger businesses and service providers.”

Ahad Aboss,
Solution Architect

Challenge

  • Grow business
  • Manage costs
  • Enhance service offerings
  • Protect against DDoS attacks

Solution

  • Network level, multi-tenant
  • DPI application prioritization
  • DDoS protection & Bot containment
  • Captive portal redirection

Benefits

  • Multiservice value
  • Speed / responsiveness
  • Know-how
  • Driving profits