Interface CfnWebACL.IOnSourceDDoSProtectionConfigProperty
Configures the level of DDoS protection that applies to web ACLs associated with Application Load Balancers.
Namespace: Amazon.CDK.AWS.WAFv2
Assembly: Amazon.CDK.Lib.dll
Syntax (csharp)
public interface CfnWebACL.IOnSourceDDoSProtectionConfigPropertySyntax (vb)
Public Interface CfnWebACL.IOnSourceDDoSProtectionConfigPropertyRemarks
ExampleMetadata: fixture=_generated
Examples
// The code below shows an example of how to instantiate this type.
// The values are placeholders you should change.
using Amazon.CDK.AWS.WAFv2;
var onSourceDDoSProtectionConfigProperty = new OnSourceDDoSProtectionConfigProperty {
AlbLowReputationMode = "albLowReputationMode"
};Synopsis
Properties
| AlbLowReputationMode | The level of DDoS protection that applies to web ACLs associated with Application Load Balancers. |
Properties
AlbLowReputationMode
The level of DDoS protection that applies to web ACLs associated with Application Load Balancers.
string AlbLowReputationMode { get; }Property Value
Remarks
ACTIVE_UNDER_DDOS protection is enabled by default whenever a web ACL is associated with an Application Load Balancer. In the event that an Application Load Balancer experiences high-load conditions or suspected DDoS attacks, the ACTIVE_UNDER_DDOS protection automatically rate limits traffic from known low reputation sources without disrupting Application Load Balancer availability. ALWAYS_ON protection provides constant, always-on monitoring of known low reputation sources for suspected DDoS attacks. While this provides a higher level of protection, there may be potential impacts on legitimate traffic.