Lab 4Scenario: cloud-based mitigation Overview Description In this lab we will configure Pravail APS cloud signaling and use it to protect against volumetric attack. Protected data center is connected with 2Mbps last mile that can be easily overwhelmed by a DDoS attack. Your goal is to configure Cloud Signaling between Pravail APS and cloud-based Peakflow SP/TMS and test Cloud Signaling operation during a DDoS attack. For management and monitoring of Pravail APS a separate out-of-band DCN is used. For Cloud Signaling regular uplink path should be setup. DCN mgt1 ext0 Internet 2 Mbps last mile Cloud Signaling path mgt0 int0 Pravail APS Victim Web Server Objectives After completing this lab, you will be able to do the following: (Tasks) • Configure cloud signaling • Test cloud signaling • Mitigate volumetric attacks with Cloud Signaling support • Monitor cloud signaling status L4-1 Check cloud widget to see if UDP heartbeats are working properly Mitigating volumetric attack with cloud signaling support 1.168. 5. 6.129 as a cloud signaling server. Click “Enable Cloud Signaling” 4. Use 192.25. This setting is typically provided by cloud signaling server operator.43/ L4-2 Pravail APS 3. Estimated Completion Time • The estimated completion time for this lab is 30 minutes. Navigate to Administration->Cloud Signaling 3.1 . This setting is typically provided by cloud signaling server operator. Save your settings Monitoring and testing cloud signaling In this task we will look at options for monitoring and testing cloud signaling 1. Cloud signaling preparation Cloud signaling configuration 1. This setting is typically provided by cloud signaling server operator. 2. 7.2. Specify PravailAPS13 as a Pravail ID. Check that your victim server is responding by navigating to http://10. To check if HTTPS handshake works properly use “Test Connection” button on cloud signaling configuration page 2. Using web browser log onto your Pravail APS appliance.Cloud signaling Lab 4 Equipment/Tools The following equipment is required to complete this lab: • web browser Ask you instructor for lab access instructions.2. Enter SEWxgGBiXD32 as Cloud Signaling Password. After few minutes check cloud signaling widget status to see volume of traffic mitigated by Peakflow SP/TMS in the cloud 8. Log into Peakflow SP using scoped account with following credentials: • https://10.25. L4-3 . Click Activate button on Cloud Signaling Widget to request cloudbased mitigation 5. Wait for a minute for routing convergence to complete 6.6/ • User name: student13 • Password: 28YZoGhy68 9. Once attack is mitigated. Ask instructor to launch volumetric against victim server 3. check again if web server is responding 7.Lab 4 Cloud signaling 2. Verify that the victim is no longer available 4. Click on ongoing mitigation and inspect interface available for MSSP customer This completes the lab exercise.2.