The DDoS protection system is designed for HTTP (and HTTPS, when using SSL and a certificate) protection. By default, when you subscribe to the Web Application Firewall, our platform already protects your application from typical SYN, UDP, ICMP, PUSH, slowloris, ACL floods: LAND, smurf and teardrop attacks, and other popular attacks at the network level without having to do anything. By configuring this feature, you add HTTP DDoS protection. With it, we protect against common HTTP slow POST, recursive GET floods and other HTTP-based attacks by sending a low-impact computational challenge to a percentage of the connections. The challenge is easily answered by legitimate clients, but DoS bots cannot. This allows us to quickly drop invalid bot requests that overwhelm your server(s).
Add – Select “Add” to add a new DDoS policy.
Edit – Select the desired policy and then click “Edit” to alter the policy’s settings.
Delete – Select the desired policy and click “Delete” to remove a policy. You cannot delete a policy that is assigned to a server.
Search – Search for a specific policy.
Reload – Refresh the window.
Manage Bindings – Press “Manage Bindings” to bind a policy to your server. DDOS policies are bound on a PER PORT basis. This can also be done in the “Ports and Protocols” section under server management. Be sure to define Max Clients and Max Requests that your server can handle when creating the policy. If not done properly DDOS protection will not function as it should.
Company: First select the sub-company (or parent company) you’d like to manage the bindings for. Only servers and policies under the selected company will appear in the fields below.
Server: Select the server that you’d like to bind a policy to.
Port: Once you select a server, this field will show all the ports that server has open. DDoS policies are bound to servers on a per-port basis, so you must select each port separately that you’d like your policy bound to.
Policy: Select the policy you’d like to bind to the server/port from the drop-down list and press the “Bind” button. You can only bind one policy to each port on a server. After you’ve bound the policy to the port, the drop-down list will not appear, and you’ll see the name of the DDoS policy bound to the port, and an “Unbind” button. like so;