How to defend against denial-of-service attacks with Azure DDoS Protection | Azure Friday
ฝัง
- เผยแพร่เมื่อ 26 ก.ค. 2024
- Distributed denial-of-service (DDoS) attacks are rampant and it's not a question of if a business will be impacted but when. Anupam Vij shows Scott Hanselman how Azure DDoS Protection Standard can protect your applications against targeted DDoS attacks and why it is critical for every business running in Azure to use the service to enhance their security posture. If your protected applications are under attack, Azure DDoS Protection Standard provides an SLA guarantee and cost protection.
6:20 - Demo
Azure DDoS Protection
aka.ms/azfr/587/01
Azure DDoS Protection Standard overview
aka.ms/azfr/587/02
Azure DDoS Protection - Designing resilient solutions
aka.ms/azfr/587/03
Holiday season is DDoS season blog post
aka.ms/azfr/587/04
Azure Networking products
aka.ms/azfr/587/05
Create a free account (Azure)
aka.ms/azfr/587/free
#microsoft #microsoftazure - วิทยาศาสตร์และเทคโนโลยี
The way Anupam is elaborating about DDOS protuction amazing supper cool
Thanks so much
Thanks for this. Very informative. Was interesting to hear Anupam reiterate that DDOS Standard can protect anything within a VNET with a public IP address. What about App services not within VNET? Is there a service that we can use to mitigate against DDOS attacks on PAAS services not within a VNET?
Did you get an answer for this question from Microsoft Haripraghash please? If yes please share it with me. Thanks
Ragulan Sivabalakrishnan no I did not get a reply for that. Based on what I have researched, best bet is to add a WAF in front to at least mitigate L7 attacks. However it won’t entirely eliminate DDOS as DDOS can be done in a variety of ways on L4
All PaaS services have basic DDoS enabled by default.
docs.microsoft.com/en-us/azure/app-service/overview-security
Thanks
Good Information. When you say " notification send to Azure security Center and through Azure monitor". DO you mean after the attack has been mitigated by Microsoft, the affected customer receives notifications via Azure Security Center and Azure Monitor?
How does WAF/WAG integrate with Azure FW in this scenario.
Provided as a complimentary service among others like Azure Firewall and DDoS Std, WAF is needed to protect against L7 attacks on web applications viz. sql injection, xss scripting etc. Firewall can allow organizations to control the flow of traffic inbound/outbound from the hub VNET. While DDoS Std, protects the public IPs of both WAF, Firewall and other services in the hub VNET from DDoS attacks. Network security requires holistic approach, defense in depth, zero trust - where if one layer/control is breached; other layers/controls are available to provide protection.
Sounds expensive
Mhhh 2944$/month for an anti ddos attack seems very cheap :')