{"id":8866,"date":"2025-01-31T21:29:53","date_gmt":"2025-01-31T18:29:53","guid":{"rendered":"https:\/\/sunucucozumleri.com\/blog\/?p=8866"},"modified":"2025-01-31T21:29:53","modified_gmt":"2025-01-31T18:29:53","slug":"carpet-bombing-ddos-saldirilarina-karsi-savunma","status":"publish","type":"post","link":"https:\/\/sunucucozumleri.com\/blog\/carpet-bombing-ddos-saldirilarina-karsi-savunma\/","title":{"rendered":"Carpet Bombing DDoS Sald\u0131r\u0131lar\u0131na Kar\u015f\u0131 Savunma"},"content":{"rendered":"<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_82_2 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<div class=\"ez-toc-title-container\">\n<p class=\"ez-toc-title\" style=\"cursor:inherit\">Makale \u0130\u00e7eri\u011fi<\/p>\n<span class=\"ez-toc-title-toggle\"><a href=\"#\" class=\"ez-toc-pull-right ez-toc-btn ez-toc-btn-xs ez-toc-btn-default ez-toc-toggle\" aria-label=\"\u0130\u00e7indekiler Tablosunu A\u00e7\/Kapat\"><span class=\"ez-toc-js-icon-con\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/span><\/a><\/span><\/div>\n<nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/sunucucozumleri.com\/blog\/carpet-bombing-ddos-saldirilarina-karsi-savunma\/#Meydan_Okuma\" >Meydan Okuma<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/sunucucozumleri.com\/blog\/carpet-bombing-ddos-saldirilarina-karsi-savunma\/#Risk\" >Risk<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/sunucucozumleri.com\/blog\/carpet-bombing-ddos-saldirilarina-karsi-savunma\/#Cozum\" >\u00c7\u00f6z\u00fcm<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/sunucucozumleri.com\/blog\/carpet-bombing-ddos-saldirilarina-karsi-savunma\/#Ozet\" >\u00d6zet<\/a><\/li><\/ul><\/nav><\/div>\n<h2 class=\"heading ns-container--t-margin-md\"><span class=\"ez-toc-section\" id=\"Meydan_Okuma\"><\/span>Meydan Okuma<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Hal\u0131 bombalamas\u0131 yeni bir \u015fey de\u011fil, y\u0131llard\u0131r var ve sald\u0131rganlar taraf\u0131ndan ara s\u0131ra kullan\u0131l\u0131yor. Be\u015f y\u0131l \u00f6nce ba\u015flayan bu sald\u0131r\u0131lar T\u00fcrkiye, Fransa, \u0130talya ve G\u00fcney Afrika&#8217;daki a\u011flar\u0131 hedef ald\u0131. Bu sald\u0131r\u0131lar tehdit akt\u00f6rleri aras\u0131nda giderek daha pop\u00fcler hale geliyor ve bug\u00fcn ABD&#8217;de ve d\u00fcnya genelinde bir\u00e7ok servis sa\u011flay\u0131c\u0131 ve b\u00fcy\u00fck a\u011f operat\u00f6r\u00fc taraf\u0131ndan yayg\u0131n olarak deneyimleniyor.<\/p>\n<p>Bir Carpet Bombing sald\u0131r\u0131s\u0131 s\u0131ras\u0131nda hedeflenen adresler her zaman statik de\u011fildir ve bir sald\u0131r\u0131n\u0131n \u00f6mr\u00fc boyunca de\u011fi\u015febilir. Bu sald\u0131r\u0131lar genellikle yans\u0131ma-amplifikasyon teknikleriyle birle\u015ftirilir. Yans\u0131ma amplifikasyonu, bir\u00a0DDoS sald\u0131r\u0131s\u0131n\u0131n\u00a0ger\u00e7ek kayna\u011f\u0131n\u0131 g\u00fc\u00e7lendirmek ve gizlemek i\u00e7in zay\u0131f bir \u015fekilde g\u00fcvence alt\u0131na al\u0131nm\u0131\u015f veya yap\u0131land\u0131r\u0131lm\u0131\u015f \u0130nternet altyap\u0131s\u0131n\u0131 kullan\u0131r .<\/p>\n<p>Yans\u0131ma y\u00fckseltmesi, yakla\u015f\u0131k on y\u0131ld\u0131r internette g\u00f6r\u00fclen en b\u00fcy\u00fck DDoS sald\u0131r\u0131lar\u0131n\u0131n \u00e7o\u011funun arkas\u0131ndayd\u0131. DNS, NTP, SSDP, SNMP vb. dahil olmak \u00fczere bir\u00e7ok protokol yans\u0131ma y\u00fckseltmesi i\u00e7in kullan\u0131labilir. Son zamanlarda sald\u0131rganlar ayr\u0131ca sald\u0131r\u0131 etkisine durum bilgisi \u00f6\u011fesi ekleyen TCP tabanl\u0131 (SYN-ACK) yans\u0131ma y\u00fckseltmesini de kulland\u0131lar (g\u00fcvenlik duvarlar\u0131, NAT, y\u00fck dengeleyiciler hedef al\u0131nd\u0131\u011f\u0131nda).<\/p>\n<p>Hedeflenen kurulu\u015flar aras\u0131ndaki \u00e7evrimi\u00e7i i\u015f ili\u015fkilerinin geli\u015fmi\u015f ke\u015ffiyle birle\u015ftirilen Hal\u0131 Bombard\u0131man\u0131 ve Yans\u0131ma G\u00fc\u00e7lendirme taktikleri, sald\u0131rganlar\u0131n DDoS sald\u0131r\u0131lar\u0131n\u0131 do\u011fru bir \u015fekilde tespit etme, s\u0131n\u0131fland\u0131rma, izleme ve azaltma a\u00e7\u0131s\u0131ndan savunmac\u0131lar i\u00e7in \u00e7\u0131tay\u0131 y\u00fckseltmesini sa\u011flar.<\/p>\n<div id=\"section--1\" class=\"wysiwyg wysiwyg--max-width-full wysiwyg--rm-padding\">\n<div class=\"pr-header-content\">\n<div class=\"wysiwyg wysiwyg--max-width-full\">\n<h2 class=\"heading ns-container--t-margin-md\"><span class=\"ez-toc-section\" id=\"Risk\"><\/span>Risk<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Hal\u0131 bombalama sald\u0131r\u0131lar\u0131n\u0131n y\u00f6netilmesi daha zordur \u00e7\u00fcnk\u00fc:<\/p>\n<ol>\n<li>Bir adres aral\u0131\u011f\u0131n\u0131 hedefleyerek genellikle hedef ana <a href=\"https:\/\/sunucucozumleri.com\/blog\/bilgisayar-nasil-kullanilir\/\">bilgisayar<\/a> ba\u015f\u0131na daha az miktarda trafik olur. Bu, baz\u0131 alg\u0131lama mekanizmalar\u0131n\u0131n tetiklenmemesi anlam\u0131na gelebilir.<\/li>\n<li>Binlerce adres hedeflenirse, hedef adres ba\u015f\u0131na bir azaltma ba\u015flatan sistemler kaynak t\u00fcketebilir.<\/li>\n<li>\u00c7ok say\u0131da ana bilgisayara y\u00f6nelik trafi\u011fi y\u00f6nlendirmek, sald\u0131r\u0131\/temiz trafi\u011fin \u00e7ok b\u00fcy\u00fck hacimlerinin\u00a0azaltma altyap\u0131s\u0131na\u00a0iletilmesi anlam\u0131na gelebilir . Bu, \u00f6zellikle FlowSpec tabanl\u0131 azaltmalar i\u00e7in bunalt\u0131c\u0131 olabilir.<\/li>\n<li>Hal\u0131 bombalama sald\u0131r\u0131s\u0131n\u0131n hedefine do\u011fru trafi\u011fi yans\u0131tmak i\u00e7in genellikle bir veya daha fazla i\u015fletmeden veya a\u011fdan gelen belirli \u0130nternet altyap\u0131s\u0131 kullan\u0131l\u0131r.<\/li>\n<\/ol>\n<\/div>\n<\/div>\n<\/div>\n<div id=\"section--2\" class=\"wysiwyg wysiwyg--max-width-full wysiwyg--rm-padding\">\n<div class=\"pr-header-content\">\n<div class=\"wysiwyg wysiwyg--max-width-full\">\n<h2 class=\"heading ns-container--t-margin-md\"><span class=\"ez-toc-section\" id=\"Cozum\"><\/span>\u00c7\u00f6z\u00fcm<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Hal\u0131 bombalama sald\u0131r\u0131lar\u0131, k\u00f6t\u00fc akt\u00f6rlerin ba\u015flatabilece\u011fi en y\u0131k\u0131c\u0131 da\u011f\u0131t\u0131lm\u0131\u015f sald\u0131r\u0131lardan biridir \u00e7\u00fcnk\u00fc ayn\u0131 anda geni\u015f IP adresi aral\u0131klar\u0131n\u0131 hedef al\u0131rlar ve SOC ekiplerinin y\u00f6netmesi imkans\u0131z olan binlerce sald\u0131r\u0131 uyar\u0131s\u0131 \u00fcretirler. B\u00fcy\u00fck trafik hacimlerini zaman i\u00e7inde incelemek, bu verileri ba\u011flamsalla\u015ft\u0131rmak ve iyile\u015ftirmek ve a\u011f kullan\u0131labilirli\u011fini tehdit eden anormallikler \u00fczerinde h\u0131zla harekete ge\u00e7mek hi\u00e7 bu kadar gerekli olmam\u0131\u015ft\u0131. Ancak kaynak k\u0131s\u0131tlamalar\u0131 a\u011f operat\u00f6rlerini etkilemeye devam ediyor ve \u00f6l\u00e7eklenebilir, u\u00e7tan uca, otomatik analitik i\u015f ak\u0131\u015flar\u0131n\u0131n ve korumalar\u0131n de\u011ferini art\u0131r\u0131yor.<\/p>\n<p>Arbor Sightline,\u00a0m\u00fc\u015fterilerin korunmas\u0131n\u0131 sa\u011flayarak hal\u0131 bombalama sald\u0131r\u0131lar\u0131n\u0131 tespit edebilen birden fazla tespit mekanizmas\u0131na sahiptir. Arbor Sightline, bir sald\u0131r\u0131da yer alan \u00f6nekleri takip etme \u00f6zelli\u011fine sahiptir, b\u00f6ylece yaln\u0131zca ilgili trafik azaltma altyap\u0131s\u0131na y\u00f6nlendirilir.<\/p>\n<p>NETSCOUT, Adaptive DDoS Protection\u00a0ile\u00a0, hal\u0131 bombalama sald\u0131r\u0131lar\u0131n\u0131 tek, anla\u015f\u0131lmas\u0131 kolay bir uyar\u0131da tespit edip raporlamak i\u00e7in t\u00fcm alt a\u011flarda a\u011f d\u00fczeyinde DDoS trafi\u011fini anlamak i\u00e7in yeni bir yol tan\u0131tt\u0131. Arbor Sightline&#8217;\u0131n Makine \u00d6\u011frenmesi tabanl\u0131 Precise Protection Prefix teknolojisi, sald\u0131r\u0131n\u0131n hedef ald\u0131\u011f\u0131 belirli IP aral\u0131klar\u0131n\u0131 otomatik olarak belirler. Daha sonra sald\u0131r\u0131 a\u011fda farkl\u0131 hedeflere do\u011fru hareket ederken bile bunlar\u0131 hafifletme i\u00e7in otomatik olarak\u00a0Arbor Threat Mitigation Systems&#8217;a\u00a0(TMS) y\u00f6nlendirir. Bu Adaptive DDoS Protection yetene\u011fi, hal\u0131 bombalama sald\u0131r\u0131lar\u0131n\u0131n tespitini ve hafifletilmesini \u00f6nemli \u00f6l\u00e7\u00fcde iyile\u015ftirir.<\/p>\n<p>Arbor Sightline, h\u0131zl\u0131 sel alg\u0131lama \u00f6zelli\u011fini kullanarak hal\u0131 bombalama DDoS sald\u0131r\u0131lar\u0131n\u0131 bir saniye gibi k\u0131sa bir s\u00fcrede tespit edebilir ve sald\u0131r\u0131 alt\u0131ndaki IP aral\u0131klar\u0131n\u0131 belirleyip yaln\u0131zca bu trafi\u011fi Arbor TMS&#8217;ye y\u00f6nlendirerek bu sald\u0131r\u0131lar\u0131 otomatik olarak azaltabilir.<\/p>\n<p>Arbor Sightline, kaynaklar\u0131 etkili bir \u015fekilde y\u00f6neterek mevcut azaltmalara otomatik olarak yeni hedefler ekleyebilir. Arbor Sightline, sald\u0131r\u0131 trafi\u011fi hacimleri de\u011fi\u015ftik\u00e7e sald\u0131r\u0131lar\u0131 mevcut Arbor TMS azaltma altyap\u0131s\u0131 aras\u0131nda dinamik olarak ta\u015f\u0131yarak mevcut Arbor TMS azaltma kapasitesini otomatik olarak y\u00f6netebilir. Bu \u00f6zellikler, a\u011f altyap\u0131s\u0131n\u0131n a\u015f\u0131r\u0131 y\u00fcklenmedi\u011finden emin olur ve operasyon personelinin DDoS sald\u0131r\u0131 yan\u0131t\u0131n\u0131 y\u00f6netmek i\u00e7in harcad\u0131\u011f\u0131 zaman\u0131 azalt\u0131r.<\/p>\n<p>Hal\u0131 bombalama savunma kabiliyetleri \u015funlar\u0131 i\u00e7erir:<\/p>\n<ul>\n<li>Saniyede y\u00fcz milyonlarca pakete kadar \u00f6l\u00e7eklenebilen otomatik azaltma<\/li>\n<li>(Yaln\u0131zca) ihtiya\u00e7 duyulan trafi\u011fin incelenmesi i\u00e7in sald\u0131r\u0131 hedeflerinin izlenmesi<\/li>\n<li>Ak\u0131ll\u0131 azaltma i\u00e7in sald\u0131r\u0131 kaynaklar\u0131n\u0131 belirlemeye y\u00f6nelik analizler<\/li>\n<li>Sald\u0131r\u0131 trafi\u011fini s\u00fcrekli analiz eden ve azaltma \u00f6nlemlerini ger\u00e7ek zamanl\u0131 olarak g\u00fcncelleyen, hedeflenen adresleri ve y\u00f6ntemleri de\u011fi\u015ftiren Geli\u015fmi\u015f DDoS Korumas\u0131.<\/li>\n<\/ul>\n<\/div>\n<\/div>\n<\/div>\n<div id=\"section--3\" class=\"wysiwyg wysiwyg--max-width-full wysiwyg--rm-padding\">\n<div class=\"pr-header-content\">\n<div class=\"wysiwyg wysiwyg--max-width-full\">\n<h2 class=\"heading ns-container--t-margin-md\"><span class=\"ez-toc-section\" id=\"Ozet\"><\/span>\u00d6zet<span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Hal\u0131 bombalamas\u0131 ve yans\u0131ma-art\u0131r\u0131c\u0131 sald\u0131r\u0131lar karma\u015f\u0131k ve y\u00f6netilmesi zor olsa da, Arbor Sightline&#8217;\u0131n \u00e7ok say\u0131da tespit mekanizmas\u0131 ve TMS tabanl\u0131 cerrahi azaltma \u00f6zelli\u011fiyle bu sald\u0131r\u0131lar\u0131 tespit edebilir ve a\u011f\u0131n\u0131z\u0131 ve m\u00fc\u015fterilerinizi etkili bir \u015fekilde korumak i\u00e7in bunlar\u0131 y\u00f6netebilirsiniz.<\/p>\n<\/div>\n<\/div>\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Meydan Okuma Hal\u0131 bombalamas\u0131 yeni bir \u015fey de\u011fil, y\u0131llard\u0131r var ve sald\u0131rganlar taraf\u0131ndan ara s\u0131ra kullan\u0131l\u0131yor. Be\u015f y\u0131l \u00f6nce ba\u015flayan bu sald\u0131r\u0131lar T\u00fcrkiye, Fransa, \u0130talya ve G\u00fcney Afrika&#8217;daki a\u011flar\u0131 hedef ald\u0131. Bu sald\u0131r\u0131lar tehdit akt\u00f6rleri aras\u0131nda giderek daha pop\u00fcler hale geliyor ve bug\u00fcn ABD&#8217;de ve d\u00fcnya genelinde bir\u00e7ok servis sa\u011flay\u0131c\u0131 ve b\u00fcy\u00fck a\u011f operat\u00f6r\u00fc taraf\u0131ndan &hellip;<\/p>\n","protected":false},"author":1,"featured_media":8867,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[232],"tags":[],"class_list":["post-8866","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-blog"],"acf":[],"_links":{"self":[{"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/posts\/8866","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/comments?post=8866"}],"version-history":[{"count":0,"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/posts\/8866\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/media\/8867"}],"wp:attachment":[{"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/media?parent=8866"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/categories?post=8866"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/sunucucozumleri.com\/blog\/wp-json\/wp\/v2\/tags?post=8866"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}