Nexusguard is a leading DDoS mitigation and security company founded in 2008. The company is headquartered in San Francisco, CA and has data centers across North America, Europe, and SE Asia.
Their primary service is protecting clients against DDoS attacks using their network of scrubbing centers and a team of experts at their SOC. In addition to network layer attacks, they can also protect applications, DNS, and customer origins. They also utilize their global network as a CDN to accelerate content delivery.
The service is completely cloud-based and does not offer on-site deployment or hardware.
Nexuguard currently has 10 data centers in the US, London, and Asia Pacifc.
North America: San Francisco, San Jose, Los Angeles, Ashburn, Miami
Asia: Hong Kong, Singapore, Taiwan, Manila
The network has roughly 1.5Tbps of scrubbing capacity, which is enough to handle most large-scale volumetric DDoS attacks. They also have a failover system in place, so if one data center fails, traffic is automatically rerouted to the next closest.
Nexusguard does not share pricing publicly. To receive a custom quote you’ll need to contact a sales representative via live chat or phone.
Nexusguard uses several mitigation techniques. They maintain an extensive IP reputation list that laerts you when blacklisted IPs try to access your site. They use a progressive challenge algorithm to determine if an IP is dangerous.
The Nexusguard global network acts as a CDN, caching and serving static content from their 10 data global data centers. They also offer a web application firewall that allows clients to run all application traffic through the Nexuguard scrubbing centers before passing safe traffic to the application servers. The service also offers deep packet inspection, which scans beyond the header and into the body of a packet for malicious data.
The Nexusguard Service Provider Enablement program (SPE) offers service providers a turnkey way to add DDoS mitigation to their portfolio. They provide on-premise equipment and consulting services to the ISP and then once the Nexusguard technology is installed on the network, they use BGP to route attack traffic to one of Nexusguards scrubbing centers. This is all completely white-label and can be done with little to no capex.