- Easy setupYou can enable Yandex DDoS Protection when creating your virtual machines, database clusters, or load balancers. All you need to do is turn on the protection option when selecting a public IP address.
- Built-in traffic scanningAll incoming traffic on protected resources passes through filtration nodes for analysis, regardless of whether an attack is underway. Yandex DDoS Protection automatically blocks or allows traffic on OSI layers 2 and 3, and also protects against SYN flood attacks. The filtered traffic is redirected to the protected resource.
- Rapid detectionContinuous monitoring is used to determine the normal traffic profile for each resource. A DDoS attack can be detected almost immediately, without the user’s intervention.
- Transparent pricingYou don’t need to worry about restricted bandwidth for malicious and legitimate traffic, or limits on the amount of filtered traffic. You only pay for incoming traffic that is allowed to pass to the resource.
A DDoS attack can make web services and public APIs very slow to respond, or even completely unavailable. Yandex DDoS Protection inspects traffic using a set of signatures, detection algorithms, and other analysis methods, and automatically filters incoming traffic for protected services.
UDP-based and SIP-based applications usually run on virtual machines with a public IP address. Yandex DDoS Protection protects these virtual machines from DDoS attacks on OSI layers 2 and 3, including protection from UDP flood, DNS amplification, and UDP reflection attacks.