25-13 AWS Shield

Last updated Aug 17, 2023 Edit Source

#aws-service
AWS Shield is a managed DDoS (Distributed Denial of Service) protection service that safeguards applications running on AWS

• When you route your traffic through Route 53 or CloudFront you are using AWS Shield Standard
• Protects you against Layer 3 and 4 attacks
  • 4 Transport
  • 3 Network

protection against most common DDoS attacks

• access to tools and best practices to build a DDoS resilient architecture.
• Automatically available on all AWS services.

additional protection against larger and more sophisticated attacks

Available On

• Amazon Route 53
• Amazon CloudFront
• Elastic Load Balancing
• AWS Global Accelerator
• Elastic IP (Amazon EC1 and Network Load Balancer)

Notable Features

• Visibility and Reporting on Layer 3,4 and 7
  • 7 Application
  • 4 Transport
  • 3 Network
• Access to Team and Support (with Business or Enterprise Support)
• DDoS Cost Protection
• Comes with SLA

Note

Both plans integrate with AWS Web Application Firewall (WAF) to give you Layer 7 (Application) protection