Open-source DDoS protection system
Top 28.3% on SourcePulse
Gatekeeper is an open-source DDoS protection system designed for network operators in institutions, service providers, and enterprise networks. It offers a scalable, geographically distributed architecture with a centralized policy for managing traffic decisions, enabling robust defense against multi-vector DDoS attacks.
How It Works
Gatekeeper leverages DPDK for high-speed packet processing, binding network interfaces directly to userspace via the vfio-pci
driver. This bypasses the kernel's network stack, significantly reducing latency and increasing throughput. A centralized Lua-based policy engine dictates traffic handling rules across the distributed nodes, allowing for complex, coordinated responses to sophisticated attacks.
Quick Start & Requirements
intel_iommu=on
boot parameter recommended)git
, clang
, debuild
, doxygen
, libhugetlbfs-bin
, build-essential
, gcc-multilib
, linux-headers
, libmnl0
, libmnl-dev
, libkmod2
, libkmod-dev
, libnuma-dev
, libelf1
, libelf-dev
, libc6-dev-i386
, autoconf
, flex
, bison
, libncurses5-dev
, libreadline-dev
, python3
, python3-pyelftools
, libcap-dev
, libcap2
, meson
, ninja-build
, pkg-config
./etc/gatekeeper/net.lua
for port/IP settings and /etc/gatekeeper/envvars
to set GATEKEEPER_INTERFACES
with NIC PCI addresses.sudo systemctl start gatekeeper
and sudo systemctl enable gatekeeper
.Highlighted Details
Maintenance & Community
Licensing & Compatibility
debuild
suggests a Debian packaging context, which often implies open-source licenses, but this requires verification.Limitations & Caveats
intel_iommu=on
), which can be complex.7 months ago
Inactive