Incapsula expanding from 16 to 30 POPs by the end of 2014

Today, we received this exciting news from our DDoS partner, Incapsula in sharing their network expansion plan for 2014. With the first quarter behind , and with three new data centers already in place. Incapsula are excited to announce their commitment to doubling it's network size - expanding from 16 to 30 Points of Presence (POPs) by the end of the year.

With these new data centers, we expect Incapsula’s overall network capacity to surpass 1.5 Tbps. Plus, each of Incapsula’s POPs will be upgraded to cache 30 times more than its current capacity by adding new border switches with increased port density.

Where is the New Data Center? 

Western Hemisphere

1. Atlanta, USA
2. Lima, Peru
3. Madrid, Spain
4. Mexico City, Mexico
5. Sao Paulo, Brazil
6. Toronto, Canada

Eastern Hemisphere

1. Auckland, New Zealand
2. Hong Kong, China
3. Milan, Italy
4. Mumbai, India
5. Seoul, South Korea
6. Vienna, Austria
7. Warsaw, Poland

Below are the some latest updates from Incapsula about their DDoS capacities. We, at EVERWORKS.com have been engaging to Incapsula's CDN and DDoS protection solution for our Indonesia, Malaysia, Thailand and Vietnam clients. Our clients are so far all satisfied with the speed and protection feature given by Incapsula for their online businesses.

Staying Ahead of DDoS Attacks
Our rapid network expansion is not only fueled by Incapsula’s own growth but also by the growth of volumetric DDoS attacks. Since the beginning of 2013, we’ve witnessed an unprecedented increase in the number of large-scale DDoS threats to the point where one in every three attacks now reaches beyond 20Gbps and +100Gbps DDoS threats are no longer uncommon.

With several large-scale DDoS events occurring on a daily basis, and with more and more websites looking to Incapsula for protection, we knew it was time to invest; not just for the need of today, but also for the goals of tomorrow.

And so, as big as today’s announcement is for us, it’s still yet another piece of a much bigger picture, with the next big DDoS related update already around the corner.

Read More

Akamai to acquire Prolexic, then Incapsula to be acquired by Imperva!

Last few days, we received an email about from my old friend, Oliver Kwan (who is current Vice President of Sales - Asia in Akamai) that Akamai is planning to acquire Prolexic as part of the plan to extend its leading web optimization and security offerings by adding cloud-based security solutions to protect data centers and enterprise applications

More information about Akamai to acquire Prolexic (www.prolexic.com), you may visit http://www.akamai.com/html/about/press/releases/2013/press_120213.html.

Today, and i got another email from our CDN and DDoS partner, Incapsula that they have acquired by Imperva.

This two news has shared one important message to me, that how important DDoS protection is to us in the near future.

Today, DDoS has become a very common tool to attack or bring down a web service. 

Below is annoucement email that we received from Incapsula an hour ago. 

Dear Incapsula customers,

Last week Imperva announced that it will be acquiring Incapsula. 

The Imperva-Incapsula relationship is not something new and has always been very tight. Incapsula was spun out of Imperva a little over four years ago, and since then Imperva has been the sole investor in Incapsula and has also been a major distribution partner for us. 

By acquiring Incapsula, Imperva is doubling down on its investment, with the intention of further accelerating and growing our business. Incapsula will continue to operate as a separate company, under the Imperva umbrella, allowing us to maintain our focus and agility while adapting to the security and application delivery changes in the market and responding to customer needs.

2013: 500% More Network Capacity, 600% More Websites on Service

In 2013 we experienced fantastic growth. The number of websites using Incapsula grew by 600%, our traffic grew by 500%, and we grew our network to almost 500Gbps in capacity, across 15 worldwide datacenters.  

We introduced new features such as automatic backdoor detection, LoginProtect 2-factor authentication for web applications - and a complete new framework for creating custom caching policies for maximum website performance. Incapsula is now used by some of the largest consumer electronics brands, online retailers, financial institutions and SaaS services worldwide. 

The future looks bright and exciting. With the additional Imperva backing, we are planning great things for 2014. 

We just launched our new security engine with its IncapRules language, enabling enterprise customers to take advantage of the most granular controls to protect their web applications, and we are planning to almost double our global network, with four new datacenters coming online in the next 30 days. 

Incapsula - Model 2104 is not just about website security and acceleration. Incapsula is now a full-blown, Cloud-Based Application Delivery Network. 

The differences between a Content Delivery Network (CDN) and an Application Delivery Network are huge: it’s like static content vs. dynamic applications, bare metal vs. cloud, or the old way of delivering web applications vs. the new way. 

We will soon be releasing some great new features which will help our customers continue to scale their online businesses in a more effective and resilient way, using means that were never before available to them. 

These are exciting times for Incapsula and our customers and we promise to continue delivering!

Gur Shatz,
CEO and Co-Founder, Incapsula

Source @ http://www.incapsula.com/blog/incapsula-to-be-acquired-by-imperva.html

At EVERWORKS, every of our solution has the same working concept like what Prolexic and Incapsula do now - that is giving you the simplest and easiest ways to establish your internal DDoS solutions.

More info about our DDoS protection, visit EVERWORKS.com or our product page at http://www.everworks.com/Services/DDoS.

We at EVERWORKS.com has working with both of this DDoS protection for some time, and both their pro and cons. We believe both are still among the best DDoS protection solution for Malaysia or even Asia web hosting industry.

The implementation of their DDoS solution is pretty much easy, and you just need to change your DNS setting to their proxy network.

Client with server colocation and dedicated server in Malaysia can simply deploy this solution without have to move your server from one datacenter to another.

Stay tuned! We will be posting another interesting blog that related to the different between Prolexic and Incapsula.

Read More

Allow or Deny Search Engines by Using Robots.txt File

What is Robot.txt? 
Web site owners use the /robots.txt file to give instructions about a website to web robots, and this is called The Robots Exclusion Protocol. Website administrator is using robots.txt File to Allow or Deny Search Engines. If you have portions of a website that you do not wish for search indexes to see, you can protect them with a “robots.txt” file dictating which search engines are allowed or disallowed from seeing specific folders/files.

There are many options which you can specify in a robots.txt file to explicitly deny or allow specific search-bots to index certain folders or files. The simplest robots.txt file uses two rules:

1. User-agent: the robot the following rule applies to
2. Disallow: the URL you want to block
   
   These two lines are considered a single entry in the file. You can include as many entries as you want. You can include multiple Disallow lines and multiple user-agents in one entry. 

Two important considerations when using /robots.txt:

1. Robots can ignore your /robots.txt. Especially malware robots that scan the web for security vulnerabilities, and email address harvesters used by spammers will pay no attention.
2. the /robots.txt file is a publicly available file. Anyone can see what sections of your server you don't want robots to use. So don't try to use /robots.txt to hide information.

Can I block the Bad Robots?
In theory YES, in practice, NO. If the bad robot obeys /robots.txt, and you know the name it scans for in the User-Agent field. then you can create a section in your /robotst.txt to exclude it specifically. But almost all bad robots ignore /robots.txt, making that pointless.



DDoS Attack via Bad Robots
If the bad robot operates from a single IP address, you can block its access to your web server through server configuration or with a network firewall. In DDoS situation, the robot operate at lots of different IP addresses (hijacked PCs that are part of a large Botnet), to generate attack load to your server by just simply scanning your website. It will make the entire web server slow or stop with little of bandwidth involved. It's consider as level 7 of DDoS attack, the application attack.

The easiest solution is to use an advanced firewall to automatically block on all these IP addresses that make many connections. To learn more about our DDoS protection solution, please visit http://www.everworks.com/Services/DDoS

Please find below for some other articles that explains how a robots.txt file works, as well as how to and how to configure it for your website.

• http://www.robotstxt.org/
• http://www.google.com/support/webmasters/bin/answer.py?hl=en&answer=40360
• http://en.wikipedia.org/wiki/Robots_Exclusion_Standard

Read More

Real Time 160Gbps of DDoS Attack Mitigated by Prolexic

Prolexic has recently shared with EVERWORKS on interesting video about an 'Actual 160 Gbps DDoS attack being mitigated by Prolexic’s Global Network'. In Malaysia, I guess an attack of 160Gbps can actually bring down the entire nation's internet system. So, I think many our followers may be interested on this new video that documented by Prolexic, as well a to visualizes on how Prolexic mitigated a sustained 160 Gbps, 120 million packet-per-second (pps) attack. From this video, you can actually see how Prolexic's Scrubbing Center is filtering all the incoming attacked traffic before passing the clean traffic to their client.

The video has bee uploaded at http://www.youtube.com/watch?feature=player_embedded&v=Hi231ER6SfE#! (The DDoS attack occurred earlier this month and was directed against one of Prolexic’s enterprise clients in April, 2013).

Who is Prolexic?

Prolexic Technologies is the world’s largest, most trusted distributed denial of service (DDoS) protection and mitigation provider. Able to absorb the largest and most complex DDoS attacks ever launched, Prolexic protects and restores mission-critical, Internet-facing infrastructures for global enterprises and government agencies within minutes. Ten of the world’s largest banks, as well as leading companies in e-Commerce, payment processing, travel and hospitality, gaming, and other at-risk industries rely on Prolexic for DDoS protection.

EVERWORKS & Prolexic 

EVERWORKS have been working with Prolexic since 2008 to incorporate with our DDoS Protection solution in Malaysia. In our record working with Prolexic, they have successfully prevented a DDoS attack of 6Gps for our clients who colocated their server at our datacenter in Malaysia. All our clients are protected under Prolexic's Proxy mode solution, and all their Malaysian IP address will be hide behind Prolexic's proxy server or Scrubbing Center. To know more about EVERWORKS's DDoS Protection solution, please visit our product site at http://www.everworks.com/Services/DDoS

Read More