Nexusguard DDoS Protection Reviews

In my previous company, we had chosen Nexusguard for its DDoS Protection offering. So, we had a separate section to manage the fiber networks and ISP part. So for the technical team, we were using Nexusguard DDoS Protection.

Feature-wise, in my previous company, we found that Nexusguard offered more local scrubbing functionality, with a support of around 100 GB for local scrubbing. Additionally, the complete solution was a managed service provided by the Nexusguard team. Since my previous company was availing services of an ISP, there was a lot of traffic in and out. Based on the particular traffic capacity, they had provided the company with good and suitable licensing.

I am not in a position to speak about the areas where the solution needed improvement because I resigned during the implementation phase. At that time, the implementation was ongoing, and everything seemed to be going well. Using the solution, our team managed to transfer a couple of routers through a few areas. However, I believe the migration is still ongoing. Nonetheless, the first phase of the implementation was successful before my departure.

There was a certain level of performance degradation in the solution, which I don't know if it can be tuned. This is because I was working for a short period on the solution. In my experience, it is an area that can be improved while also considering the stability and scalability aspects of the solution. If one wants to scale up, then one needs to change their plan. However, the thing is, one can always go for the larger scale based on one's anticipation of future traffic.

I have experience with Nexusguard DDoS Protection. I was a customer of the solution when I worked in my previous company, where I implemented the solution last year in 2022. However, it has not been more than 12 months since I stopped using the solution, and I don't remember its version. My previous organization was a partner and customer of the solution.

I rate the solution's stability an eight out of ten.

Scaling up DDoS protection is not easy. To plan for expected traffic volume, you also need to consider the required device capacity. Depending on the selected device appliance, you may have access to both local and international scrubbing capabilities. The appliance's capacity can handle up to two million DDoS attacks, but this alone may not determine its scalability. I would rate the solution's scalability as five out of ten because they provide a device based on the traffic scope, growth rate, and traffic requirements of the user. However, this appliance-based approach can be a limiting factor for scalability. If one needs more traffic, then they have to upgrade the appliance to a separate one with higher capacity. So, I want its scalability to improve.

Also, it is not possible to determine the number of users for the solution as it operates independently of user accounts. Its functionality is based solely on licensing and traffic rather than user activity. The user cannot be defined due to this, which means that all customers will be able to access the solution via the appliance as the traffic flows through it.

I have not had many interactions with the technical support team since the solution was new in my previous organization. Based on the support received for implementation, I rate the solution's technical support a nine out of ten.

Positive

Previously, I had used PCCW. Since PCCW's capacity was insufficient, especially the local scrubbing capacity, I switched to Nexusguard. Also, PCCW's pricing was not flexible, and its support was not good enough.

In my previous organization, I was part of a team involved in the implementation process that took place around July 2022, and we completed our role in the implementation phase. However, some parts of the implementation are still ongoing. So, our team completed phase one of the implementation around September.

On a scale of one to ten, the initial setup of the solution was rated as seven due to the complexity involved in setting up a DDoS solution for a complex network. The implementation process was challenging from the perspective of both our organization and the ISP. However, our technical team received the required support, and we were successful in implementing the solution. It is difficult to improve the complexity of the implementation process since it depends on the complexity of the ISP's network architecture. If the network architecture is simplified, the implementation process could become more manageable. From a product perspective, the architecture of the solution needs to be mapped to the network architecture of the operator to ensure ease of implementation. Overall, the complexity of the implementation process can be reduced by simplifying the network architecture. The architecture of the network can be simplified From the operator end, not from the product end. I'm not blaming the product. ISPs need to have a better architecture designed for the network to make the implementation easier.

Also, regarding the deployment model, there are two options, local scrubbing and international scrubbing for Singapore. So the external traffic flow was sent to Singapore, after which the local scrubbing was done.

The deployment process took around two months. It is important to keep in mind that the traffic must be transferred one connection at a time during the migration process. Once the migration is ready to begin, the deployment process is relatively straightforward. You simply plug in the new device and connect it, then remove the other connections. However, before proceeding, it's important to consider any necessary routing adjustments.

Considering the steps involved in the deployment process, there's a particular deployment architecture to be followed. So, in our company, we ran the architecture and got support. So, the implementation was done by Nexusguard.

More than twenty to twenty-five engineers, of which five to six were from ISPN and Nexusguard, were involved in the deployment process of the solution. So altogether, the project team was around thirty-five.

The maintenance process for the solution was straightforward. So in my previous organization, we had around ten to twenty people available 24/7 for support internally. I don't know about the external support, though.

I implemented the solution in my previous organization. So, the implementation process was done in-house with support from Nexusguard since the company had a partnership with them.

I hope there was a return on investment for the company after using the solution because I haven't heard of any particular attacks or anything after the implementation of the solution.

On a scale of one to ten, where one represents a cheap option, and ten represents an expensive option, I would rate the solution a seven in terms of cost. It is worth noting that the solution is not as expensive as other options on the market, such as Orange. The licensing cost for the solution is based on a yearly subscription. The procurement team handled the pricing part of the solution.

My advice to others planning to use the solution is to carefully consider the scope of the solution, including not only the user perspective, the implementation process, and the selection of services. Additionally, it's crucial to pay attention to the traffic requirements of the network. Before getting into the solution, one should analyze their network requirements and precisely understand their network architecture and traffic. Overall, I rate the solution an eight on a scale where one is worst, and ten is best.

We have our own network infrastructure that we need to protect, and Nexusguard ensures that our network is protected against cyber-attacks, such as DDoS. It is essential for us to protect our own network and our customers from any attacks. 

Nexusguard has given us confidence that we are protected against any outside attacks. It analyzes all suspected attacks to ensure that only clean traffic will be forwarded to every customer. If an attack is confirmed, it will automatically be diverted to the scrubbing center.

Their Security Operations Center provides 24/7 monitoring of our traffic, so they can address any issue. In addition, the solution is dynamic because Nexusguard has a research team that updates the solution to respond to novel attacks. They promptly alert us when there is an attack on our infrastructure while mitigating the effects to ensure it has no impact on our network.

Nexusguard's Origin Protection protects against all legitimate attacks targeting and attempting to infiltrate our network infrastructure. Cloud Diversion is another good feature packaged with the whole solution. When attack traffic is detected, Cloud Diversion triggers to automatically route our prefix to Nexusguard’s scrubbing center, ensuring that all attack traffic is dropped in the shortest time possible. The solution also includes the Help Center, where we can create a ticket or engage in a live chat with their Security Operation Center 24/7 with just one click.

One of the features that should be added to the next release is report generation. Currently, reports can be downloaded every month and are only available at the beginning of each month. It would be nice to generate the reports based on specific dates that we prefer and not have to wait until the next month for the current month’s report. In addition, we would prefer to customize the overview that we need on a case-by-case basis.

We've been using Nexusguard DDoS Protection for more than a year

Nexusguard is stable. 

I think Nexusguard's scalability is great.

I'm grateful for Nexusguard's support. I rate it 10 out of 10

Positive

Nexusguard's setup is straightforward, and the process is explained in detail in the documentation.

Nexusguard provides a more cost-effective solution than its competitors.

We tried NSFOCUS.

I rate Nexusguard DDoS Protection 10 out of 10.

As a major air cargo terminal operator, 24/7 accessibility to our cargo management system is crucial to ensure the real-time tracking, documentation processing, and customs clearance via our web application and mobile apps are not interrupted. With evolving cyber threats, we realized the importance of implementing proactive measures to protect the availability of our infrastructure.

With the complexity of our environment and security compliance, we needed a vendor that was able to provide comprehensive and customizable enterprise-grade solutions to us. Nexusguard turns out to be the best fit

Nexusugard’s Origin Protection is the best solution for our business needs. 

With the in-depth consultation provided to us, we are able to fully understand how the Origin Protection solution works in protecting our infrastructure and applications from volumetric/application-level attacks. 

The service has also vastly enhanced our ability to analyze crucial traffic data and comprehend global traffic flow patterns. In addition, Nexusguard will also provide regular service reviews, sharing the latest attack trend and how Nexusguard solutions are coping with the evolving trends.

Nexusguard provides highly customizable, client-centric managed services. With this product, there is no need for us to invest in any additional hardware or skilled personnel to have the cloud-based DDoS mitigation platform fully integrated into our infrastructure. 

The managed service allows us to confidently rely on Nexusguard’s professional team to take relevant actions as and when required to make sure DDoS attacks are successfully mitigated, ensuring 100% uptime of our service. 

Nexusguard’s Customer Portal contains intuitive dashboards and infographics that show useful data for traffic analysis. We appreciate the transparency we can get from it.

If the application security can be improved within the current deployment of Origin Protection, that would be of additional benefit. We need to have complete coverage on different attack vectors when subscribed to Origin Protection. 

The mitigation scope of Origin Protection is not fully efficient as there could be delays in activating the countermeasures. Therefore, analysis on the application layer would be a good improvement for this product. 

Overall, we do not have not many concerns with the rest of the coverage as it is tailor-fitted to resolve volume-based DDoS Attacks.

We have been using the Nexusguard DDoS mitigation service for five years.

We are in a business that provides online gaming solutions all across Asia that is why we subscribe to Nexusguard's Origin Protection to keep our services protected from any network level DDoS attack that could possible disabled our operations. Nexusguard generally manages the  networks traffic of our services to keep a 99% availability to our clients. Additionally, they control some major ISPs in Asia where they can easily re-route traffic away from a specific ISP that is having instability issues. 

Nexusguard has exponentially improved the availability of our services because we don't have to worry much about any threats or DDoS attacks towards our services. Nexusguard's mitigation platform is capable to filter all incoming traffic through their scrubbing centers, blocking all unwanted or malicious traffic and allowing only clean traffic to reach our services. This eliminates the possibility of us being the target of attacks that would definitely cause our services to become unavailable to our clients.

Nexusguard's Origin Protection protects our business from DDoS attacks. We love the flexibility of this solution. Filters can be customized depending on the characteristics of the attack traffic, it is capable to mitigate from site level, network and even host level. This feature has made it easier for Nexusguard's SOC team to further isolate any specific attack that can't be blocked by pre-configured mitigation. It reduces the downtime of any service that is being attacked so it can go back online in just a matter of minutes. 

So far, we are satisfied with the current protection that we have from Nexusguard. We are certain that Nexusguard's security team is doing its best on keeping the solution up to date and by trying to research and identify all types of attacks across the internet as much as possible. One thing that we would like to improve from them is to provide more training to SOC team for them to have a deep understanding of the solution so that they would always be ready to answer anything without the need to escalate queries to senior personnel. 

Other thing that Nexusguard should consider is to be more internationally competitive. Though scalability is not an issue at the moment but in my opinion they should prepare the solution to be able to cater the demands of dozens customers with capacity getting larger and larger without compromising the protection from DDoS attacks. Lastly, Nexusguard should keep on being innovative to maintain its global presence. 

We've been using this solution for almost 6 years now.

Nexusguard has multiple IDCs across Asia as well as in US. This solution is definitely stable because redundancy can be applied in the event that one of the IDCs has issues or if it is under maintenance. 

I found the scalability to be impressive. Nexusguard can cater to customers with a wide range of needs without having any issues.

Technical support is doing an impressive job. They proactively coordinate with us when they detect a possible issue that has not yet been caught by our monitoring. 

Positive

If anyone is interested in implementing Nexguard, would advise them to reach out to the Service Management Team, they would be happy to assist other potential customers on this part. 

I'm certain that some kind of evaluation was done before the company went with Nexusguard. I just have no idea what those options were. I joined the company three years ago, and the current solution was already in place. 

We are satisfied with the product.

The solution must provide features for the post-processing of the traffic type and the traffic quality.

I am using the solution currently.

The tool is stable.

The tool is scalable. We have 50 to 60 users in our company. We have a dedicated person to take care of the health of the solution.

We contacted the support team for POC. The support team was helpful.

The product was easy to deploy.

Our traffic is not that high. There haven’t been any huge attacks that the solution has solved or protected us from. It produces some alerts, but alerts can be subjective. The tools get the statistics and detection from the IP flows. Overall, I rate the product a ten out of ten.