I'm researching products that will help prevent or mitigate a DOS attack at a provider edge, which in this case, consists of two 7206s. We've seen cpu use peak out, cpu tracebacks, reboots, etc occur under what appear to be DOS type storms. We're in the process of implementing Net Flow Accounting and hope to upgrade to G1 cpus, but, are still interested in what solutions exist that might mitigate the effects of a DOS attack on router resources if not bandwidth.
I've looked at the CISCO GUARD XT 5650 and CISCO TRAFFIC ANOMALY DETECTOR XT 5600 solution which appears to use net flow info to determine abnormal traffic patterns and then quarantines offendin traffic. This solution would run in the 50-100K range.
What other cisco or dare I suggest, non-cisco products might I want to look at. The cheaper the better.