CPC H04L 63/1416 (2013.01) [G06F 9/45558 (2013.01); H04L 43/08 (2013.01); H04L 47/20 (2013.01); H04L 49/25 (2013.01); H04L 63/20 (2013.01); G06F 2009/45587 (2013.01); G06F 2009/45595 (2013.01)] | 20 Claims |
1. A method comprising:
monitoring, at a first node in a switch fabric, data traffic passing into a network environment including a plurality of virtual machines;
detecting, at the first node, a traffic pattern indicative of a denial of service (DOS) attack within the monitored data traffic passing into the virtualized network environment;
generating threat information in response to detecting the traffic pattern indicative of a DOS attack; and
at the first node, using the threat information to block transmission of the DoS attack traffic at the switch fabric prior to the DOS attack traffic entering into either or both the virtual machines and one or more hypervisors hosting the virtual machines in the virtualized network environment.
|