NSFOCUS provides comprehensive, end-to-end protection from the debilitating effects of DDoS attacks.  Our Anti-DDoS solution provides maximum flexibility and complete coverage through on-premises equipment, cloud-based detection and mitigation services, or a hybrid offering that combines the strengths of both approaches.

NSFOCUS Anti-DDoS System (ADS)
Distributed Denial of Service (DDoS) attacks can cause substantial disruptions to the availability of Internet-facing online services. They can bring all operations to a halt, impact the customer experience, and result in economic losses. NSFOCUS ADS is a custom-built appliance that inspects network traffic, detects DDoS attacks and mitigates them intelligently without affecting legitimate traffic. As a result, ADS automatically provides 24×7 business continuity and maintains quality of service.

Features and Benefits
Comprehensive DDoS Attack Protection
NSFOCUS ADS not only defends against attacks on the transport layer, such as SYN Flood, SYN-ACK Flood, ACK Flood, FIN/RST Flood, UDP Flood, ICMP Flood and IP Fragment Flood attacks, but it also defends against attacks targeting the application layer, such as HTTP GET /POST Flood, slow-rate, DNS, game service and audio/video attacks.

Lowest False Positive and Negative Rates
Unlike other DDoS products that only focus on fingerprint matching or heuristics to mitigate DDoS attacks, NSFOCUS ADS uses a multi-stage inspection and analysis process that combines anti-spoofing, protocol behavior analysis, user behavior analysis, specific application protection, dynamic fingerprint identification, bandwidth control and more to mitigate attacks. This comprehensive approach leads to the lowest rates of both false positives and negatives as compared to any other technology. Not only is it highly accurate, it is also highly efficient in cleaning attack traffic. 

Flexible and Scalable Deployments
Available in a range of performance-optimized appliances, the ADS Series has been designed to meet the needs of any size organization without modifying existing applications or purchasing additional hardware.

Hardware ADS 8000 ADS 6025 ADS 4020 ADS 2020
Mitigation Capacity  40 Gbps*

29,760,000 pps

20 Gbps*

14,880,000 pps

10 Gbps

8,928,000 pps

4 Gbps

2,976,000 pps

Interfaces 8x10GE (SFP+)


4x10GE (SFP+)


4x10GE (SX fiber)


16xGE (copper) or 16xGE (SX fiber) or 12xGE (SFP) or 4x10GE (SFP+) or

4x10GE (SX fiber) or

2x10GE(SX fiber) and 8xGE(SX fiber) or

2x10GE (SFP+) and 8xGE(SFP)

4xGE (copper)


4xGE (SX fiber) and 4xGE (copper)





2 RU


2 RU

Weight 36.49 lbs (16.55 kg) 24.25 lbs (11 kg)
Environmental Operating: 41-104° F (5-40° C)

Storage: 14-158° F      (-10-70° C)

Operating: 32-104° F, (0-40° C)

Storage: -4-176° F, (-20-80° C)

Power AC Dual Power Supply (500W total) AC Dual Power Supply (350W total)
MTBF 45,000 hours


These appliances are designed for high availability: a single device can clean up to 40Gbps of attack traffic at network speeds. ADS can be scaled up to 1Tbps or higher using cluster mode in combination with the NSFOCUS Network Traffic Analyzer (NTA).

NSFOCUS Anti-DDoS for Large Deployments
The NSFOCUS DDoS Protection Solution uses a scalable architecture that is performance optimized to meet the current and future needs of large enterprise and service provider environments. Designed for network environments that require more than 40 Gbps of DDoS mitigation capacity, it uses a distributed architecture that separates DDoS mitigation, threat detection and management to allow independent scaling in each of these areas.  It can also be clustered and deployed in an out-of-path mode to provide hundreds of Gbps – and beyond – of mitigation capacity.

Network Traffic Analyzer (NTA)
NSFOCUS NTA is a threat detection appliance that identifies malicious traffic.

Anti-DDoS System (ADS)
The NSFOCUS ADS appliance leverages a multi-stage inspection and analysis process that uses a comprehensive approach to achieve the lowest rates of both false positives and negatives in the industry. Not only is it highly accurate, it is also highly efficient in cleaning attack traffic.

Anti-DDoS System Manager (ADS-M)
The ADS-M is a multi-tenant management system designed for service providers or large enterprise data centers.  It provides centralized management of the ADS and NTA appliances, as well as support for multiple, separate configuration and reporting domains by end-customer.


Hardware NTA 2000
Interfaces 2xRJ45 serial

2xUSB 2.0

4xGE (copper), 4xGE (SFP)

Dimensions  (WxDxH) 17”x20.2”x3.5”, 2 RU
Weight 36.6 lbs (16.6 kg)
Environmental Operating: 32-113° F (0-45° C)

Storage: -4-149° F (-20-65° C)

Power AC Power Supply (350W)
Flow Collection Capacity 80,000 flows/sec
Maximum number of monitored routers 20
Maximum number of monitored router interfaces 1,000
MTBF 60,000 hours


Virtual NTA

Item Recommended Configuration
CPU Intel(R) Core (TM) i7-2600 CPU @ 3.40 GHz Four cores and eight threads
Memory 16GB
Hard disk 1 TB + 2 GB
CPU + MEM Flows/sec
1*2CPU+16G 30,000
1*4CPU+16G 120,000
1*8CPU+16G 200,000
1*16CPU+16G 240,000



Hardware ADS-M 1600
Interfaces 1xRJ45 serial

2×100/1000M (copper)

4x1000M SFP slots

Dimensions (WxDxH) 17.4”x20.2”x3.5” 2 RU
Weight 41.89 lbs. (19 kg)
Environmental Operating: 32-113° F (0-45° C)

Storage: -4-149° F (-20-65° C)

Power AC Power Supply (350W)
Flow Collection Capacity (optional NTA license) 60,000 flows/sec
Maximum managed device 40 ADS, 20 NTA
Maximum concurrent users 50
Maximum number of regions 1024
Maximum IP addresses/region 65,535
MTBF 60,000 hours


For more information, please download the ADS datasheet, DDoS Protection Solution datasheet and Anti-DDoS whitepaper.