AWS Shield - AWS WAF, AWS Firewall Manager, and AWS Shield Advanced

AWS Shield

AWS provides AWS Shield Standard and AWS Shield Advanced for protection against DDoS attacks. AWS Shield Standard is automatically included at no extra cost beyond what you already pay for AWS WAF and your other AWS services. For added protection against DDoS attacks, AWS offers AWS Shield Advanced. AWS Shield Advanced provides expanded DDoS attack protection for your resources.

You can add protection for any of the following resource types:

  • Amazon CloudFront distributions

  • Amazon Route 53 hosted zones

  • AWS Global Accelerator accelerators

  • Application load balancers

  • Elastic Load Balancing (ELB) load balancers

  • Amazon Elastic Compute Cloud (Amazon EC2) Elastic IP addresses