CURRENT TOPOLOGY

Internet / DDoS Traffic

↓

AARNet BGP
AS 7575 · /16 prefix

↓ unfiltered

UWA Edge Router
campus firewall / IPS

↓ ↘

On-Prem DC

Azure

10× Sites via Optus MPLS

EDUCATION SECTOR TRENDS

• Education sector faces rapidly growing DDoS threat volumes (Cloudflare Radar)
• Exam & enrolment periods are prime attack windows
• Research IPs are publicly listed — easily targeted
• Hacktivist groups specifically target academic institutions
• AARNet carries nation-state traffic — complex threat landscape

321

cities in 120+ countries

477+

Tbps DDoS scrubbing capacity

<1s

median DDoS mitigation time

50ms

RTT for 95% of AU internet users

AUSTRALIA & NZ PRESENCE

• Perth — local PoP for low-latency UWA ingress
• Sydney, Melbourne, Brisbane, Adelaide, Canberra
• Auckland — NZ research partner access
• Direct peering with AARNet, Telstra, Optus, TPG

EDUCATION SECTOR EXPERIENCE

• Cloudflare protects multiple Group of Eight universities in Australia
• AARNet peering keeps academic traffic on trusted networks
• Supports HECVAT and ISO 27001 compliance requirements
• Project Galileo — free protection for at-risk research arms

SECURITY OUTCOMES

• Eliminate DDoS risk from AARNet uplink saturation
• Protect research & students during exam periods
• Network firewall before traffic hits campus
• Cloudflare threat intelligence on every packet

OPERATIONAL & COMMERCIAL

• Single platform for security + WAN + cloud
• Centralised policy — dashboard or Terraform
• Displace Optus MPLS costs with Cloudflare WAN
• AARNet relationship preserved & complementary
• Future-ready: extend to ZTNA, Gateway & DLP

COMPLIANCE & TRUST

• ISO 27001, SOC 2 Type II certified
• IRAP assessed — ASD-aligned assessment framework for AU Government workloads
• AU traffic stays in AU PoPs (Perth, SYD, MEL)
• Full audit logging & flow analytics