AWS Shield is a managed Distributed Denial of Service (DDoS) protection service which protects applications working on AWS. AWS Shield offers always-on detection and automatic inline mitigation that reduce application downtime and latency, so there is no requirement to occupy AWS Support to benefit from DDoS protection. There are two tiers of AWS Shield - Standard and Advanced. Now AWS Shield Advanced manages the health of your applications to better responsiveness and perfection in attack detection and mitigation. You can specify a health check in Amazon Route 53 and then link it with a resource which is safeguard by Shield Advanced via the console or API. You can implement health-based detection to all resource types that Shield Advanced supports: Elastic IP, Elastic Load Balancing (ELB), Amazon CloudFront, AWS Global Accelerator, or Amazon Route 53. When you configure health-based detection, Shield Advanced apply the health of your application as an extra signal for attack detection, accompanying several other traffic attributes. This lets Shield Advanced to notice attacks much faster and at lower traffic thresholds, upgrading the DDoS resiliency of your application and stopping fake positive notifications. Resource health status will be obtainable to the DDoS response team too. Health based detection is accessible in every AWS region where Shield Advanced is available and can be activated without any extra charges. To get detailed information about Route 53 health checks, read How Amazon Route 53 Checks the Health of Your Resources and Creating and Updating Health Checks
No comments:
Post a Comment