In recent years, Network services grows rapidly. Many requirements in our life could be done via network services, including shopping, traffic, communication, repayment, etc. Network service covering many area in our life, and along with the convenience of the Internet, Network Security has become one of the main topic in network service. In providing network service, how to avoid service vandalism, and even user data leakage? Any network security vulnerabilities of system could let users and service providers suffer significant losses. Distributed denial-of-service (DDoS) attacks is an attempt to make a machine or network resource unavailable to its intended users by many attack sources. The similarities of DDoS malicious packets and legitimate user cause DDoS is hard to detect. Many measures to filter malicious source often involve innocent normal users. Our research was to utilize SDN overall network topology monitoring that expecting SDN controller strains when DDoS occurs, forwarding packets to many backup servers in emergency condition before DDoS caused more damage. Decrease the loss of service caused by DDoS