New user sign up using AWS Builder ID is currently unavailable on re:Post. To sign up, please use the AWS Management Console instead.
Questions tagged with DDOS Protection
Protection and mitigation techniques using managed Distributed Denial of Service (DDoS) protection service, Web Access Firewall (WAF), and Content Delivery Network (CDN)
Content language: English
Select tags to filter
Sort by most recent
Browse through the questions and answers listed below or filter and sort to narrow down your results.
25 results
I’m evaluating AWS Shield services, specifically AWS Shield Advanced, to protect our web application from DDoS attacks. While I understand it offers protection against Layer 3 and Layer 4 attacks, I’m...
Hello,
in recent DDoS attack the customer noticed there were several million of the GET requests asking for the same URI. Does it make sense and how to create a WAF rule that will do a rate limit if t...
On the 3rd of August 2024 at 16:35 UTC our server 51.112.143.93 was blocked, as a result of which it became impossible to access it via ssh. We would like to clarify the situation, what specific reque...
Hi, currently under a DDoS attack going on for more than 2 hours. We are unsure whether taking the $3000 Shield advanced service instantly help us combat this attack. Since we need to commit for a yea...
Hi all,
I would like to hear your approaches when applying a rate-based rule via AWS WAF.
What are the best ways to permanently block IP addresses that trigger the RBR? I would also like to send no...
Does the traffic blocked by the security group still take into EC2 network bandwidth accounting? If the blocked traffic is huge, will the EC2 still become "denial of service" because its inbound netwo...
There could be several circumstances to discuss:
Q1. EC2 A in VPC1 & EC2 B in VPC2 (no matter from the same account or not): If EC2 A is under a DDoS attack that fills up all the network bandwidth t...
Currently we are facing a DDoS attack on our application every 3-4 days. We have configured a WAF rate limiting rule that seems to work correctly against our load testing tool but doesnt seem to block...
If a user registers via email, but this user gives up the registration halfway through.
In the user table of Cognito, the Confirmation status remains "Unconfirm".
At the end of the month, Cognito will...
How to prevent fake user signups with Cognito? If some malicious actor sends fake user singup requests to the UserPool endpoint, the free tier of Cognito will be soon exhaust. If they continue to crea...
I have the following pattern/architecture to deploy a website with CDK:
- WAF with a custom IP-based ratelimit for a Cloudfront Distribution with Api Gateway as Origin.
- a default ratelimit at the A...
I wanted to have a hard configuration on the number of requests that the API gateway should serve and once we reach that, we should not even get costed for API gateway, how can this be implemented?