we now looking for someone who can help us config a ASA 5505 firewall(Transparent mode) provide by OVH.com.
The network situation is only one server behind the firewall as a web server ,there is no other users inside the network, we need the web server been protected from DDoS attack. [url removed, login to view] is a layer out of the firewall and situation.
We are willing to pay 200 USD for proper configuration the firewall.
There is few key points to this configuration:
[url removed, login to view] purpose of this configuration is to maximum protect a single web server from DDoS attack, so smart security rules/policies are extreme important.
[url removed, login to view] configuration must be done by remote connection(ASDM, SSH&#65289;, there is no possibilities for present in the data center in real life.
3. We require a quick set up guild after configuration. so that we can do the exact same configuration for our customer next time. (we just need to do it step by step, basically what you need to do is simply copy all your command you typed in with some notes)
4. We need to know how to change the maximum number of simultaneous TCP connections.(we prefer the website is visitable during the attack, so the firewall don't drop the normal connection, firewall can recognize the difference between the normal and attack traffic, and for now, please set up a most reasonable traffic simultaneous for a website which have 100,000 IPs a day)
5.(looks stupid but Important!) The configuration must looks complex and professional(not one or two easy rules, but need to automatically recognize most common attack traffic and drop them down, also another reason for this is, The manager in my customer's company will feel much better about paying the money if they look it and thinks it is complex and not easy understand solution for them, some sort of political reason, so if there is 50 rules there and uses all the NAT AAA Globe policy etc, it will be great).
6. We ware receiving tons of ICMP connection request while we experiencing DDoS. So we like to limit or terminate it as it is useless for us.
As well as below is some certificate requirment for people who meet the need.
1. You need to have one of following(at least) certificate from cisco:
Cisco ASA Specialist(Preferred)
A certificate document is require to verify before starting the job.
2. 5 years or more networking experience is preferred.