Frequently Asked Questions

The RioRey™ RX is a purpose-built DDOS platform. From hardware to software, the RX solution is optimized to handle extraordinarily high packet rates originating from tens to sometimes hundreds of thousands of attackers. Other companies adapt their technology from firewall, intrusion detection system (IDS) or intrusion prevention system (IPS) designs; these approaches do not have the capacity to automatically deal with each attacker when faced with an immense attack.

RioRey’s unique algorithms process an unlimited number of connections or sessions per second, allowing unlimited new sessions to be launched at any time with or without a DDOS attack. Therefore, services continue uninterrupted over our RX platform.

At the same time, the RX platform performs its DDOS protection without needing assistance from the router, firewall, or access control lists. It is placed in your network with no platform compatibility issues. Instead, by removing DDOS packets before they enter the rest of the network, the RX platform allows firewalls, IDS and IPS to focus on the security breaches they are designed to handle — viruses, port scans, and the like.

The traditional approach to combat attack traffic is to place a voluminous “exception” list in the firewall or router to keep the network functioning. This exception list is difficult to create and maintain, and must be updated and cleared on a regular basis. This labor-intensive task is problematic, especially during a DDOS outburst. Often, malware left behind after an attack denies service to good traffic at a future date.

By putting the RX platform in front of the network and firewall, there is no need to provision exception lists and no need to perform firewall maintenance during and after a DDOS attack. The RX platform turns DDOS defense from a labor-intensive task to an automated task.

The RX platform is a router class, high availability, fail-safe design and has been fully tested to operate from 0°C to 50°C. The rVIEW management tool and the LEDs on the front panel report operational status. In the case of a power supply or fan module failure, the redundant architecture will take over and maintain safe operation.

If an unlikely hardware failure occurs, and the RX does not repair itself, the RX goes into a hardware bypass mode. This shunts the WAN and LAN ports, maintaining all customer traffic flow through the equipment. Thus, the DDOS filtering function may be unavailable, but the flow of traffic will not be impeded.

In case of a software failure, the multiple watchdogs embedded in the RX will attempt to restart the platform and report the incident to the operator. The RX platform bypasses customer traffic during the restart phase, maintaining service.

RioRey™ offers a family of products with different performance characteristics. Our entry-level device is designed to handle 100Mbps (Fast-Ethernet) or OC-3 rate traffic. Our high-end device is designed to handle a full gigabit of traffic.

Our patent pending algorithms were designed to block DDOS attacks. With hardware and software design dedicated to this single function, we are able to optimize our design to tackle high throughput, large numbers of sessions and IP address situations. The RX algorithm looks at bulk attack traffic behavior instead of attempting to isolate data packet by packet; thus, we are able to sustain an unlimited number of concurrent sessions.

The RioRey™ solution is easily deployed in a wide range of settings from web hosting environments to supporting services in ecommerce, financial transaction processing, ISPs, VoIP and protecting E911 service providers.

The RioRey™ solution is the price/performance leader in the DDOS sector. Our list price starts at $9,500, making it the most cost-effective solution on the market today with a 1Gbps interface.

Yes. The RioRey™ RX Platform has a "white listing" capability. IP addresses of customers who do not purchase protection can be added to the whitelist and will not be protected during an attack.

A whitelist is a "Do Not Filter" list. All versions of the RioRey™ RX Platform support an incoming whitelist: Traffic destined for the listed ports and IP addresses are not filtered. Bi-directional RX versions also support an outgoing whitelist, where traffic through the listed outbound ports and IP addresses is not filtered.

The inbound whitelist is for service providers that want to provide selective DDOS coverage, as a premium service or for another business reason.

The outbound whitelist provides a path by which computers in the network that need to scan an outside address can do so. A security service company can sit behind an RX, benefiting from DDOS protection, and at the same time provide scanning services to check the integrity of their clients.

The whitelists can be set up using the graphical interface on rView. The lists are in XML, so the operator can prepare large lists ahead of time and quickly upload them to the RX. The XML format is described in the RX Users Guide.

RioRey™ offers a rich management and reporting environment. Four levels of notification and monitoring are available to the network operator.

The RX can send attack summaries to PDAs, pagers, and similar devices. Summaries include basic information about the attack, the nature of the RX response, and whether the situation needs operator attention.

Our management software, rView, provides real-time management of multiple RX platforms, enabling the network manager to visualize the attack and examine its sources and victims.

rCare, our DDOS analysis and reporting tool, provides long-term trend analysis, detailing each attack historically, and providing summaries for management reports. In addition, rCare provides industry trend knowledge by anonymous aggregation of data from multiple RX units in the field. rCare gives network operators preventive knowledge and better service experience in a proactive manner.

To fully protect the network, you need to place an RX on each of the 4 external IP connections.

The RX is high-availability equipment with redundancies and a fail-safe hardware bypass built in. It is designed to be as available as your incoming IP connection. Therefore, your multiple external IP connections that protect the availability of an IP link do not need any changes when you add RX for DDOS protection.

There are two reporting tools for the RX platform: rView and rCare.