on 08-Feb-202305:00 - edited on 10-Apr-202313:59 by LiefZimmerman
F5 Distributed Cloud DDoS Mitigation leverages a globally secured network with Regional Edges (RE), hosted in scrubbing data centers, interconnected across a dedicated, multi-terabit, redundant, private backbone, operated by Tier 1 Carriers.
There have been several articles written about F5 Distributed Cloud (XC) DDoS and how to quickly protect your applications using this service. These covered Fast ACL’s to quickly protect yourself from Layer 3 and Layer 4 Network attacks and Layer 7 protection of your applications. I will link to those below.
These solutions took manual configuration and monitoring and are still necessary for a complete layered approach to protecting your applications.
This article will show how we continue to make DDoS and the configuration easier by introducing you to F5 XC DDoS Auto-Mitigation feature.
The platform itself offers immediate mitigation through our auto-mitigation edge protection (Layer 3/4). This architectural enhancement sits at the edge of our network and the underlying strength of this solution stems from it’s incredibly fast Time to Mitigate (TTM) the most common attack vectors.
Then to make this solution even more robust, I am going to show you how to add that same feature, protecting your application at Layer 7.
This article will assume you have a F5 Distributed Cloud Console Account and have already configured a HTTP Load Balancer that is protecting an application.
Select Load Balancers
Verify the correct Namespace
I currently have 3 Load Balancers to choose from, your environment may be different.
Click the 3 ellipses on the right side of the page of the Load Balancer you wish to add DoS Protection to.
When the fly-out appears, select Manage Configuration.
Notice along the left side are all the configuration items available for your Load Balancer.
To Edit click the Edit Configuration to the right.
Once you click Edit Configuration, you can either scroll down to DoS Protection or click the Dos Protection label on the left side.
Initially DoS Protection is Disabled.
Enable DoS protection
Next Enable Auto Mitigation.
Scroll to the bottom and select Save and Exit.
I was able to demonstrate to you how to very simply and with very little effort you are able to protect yourself from Dos Attacks using F5’s leading DoS Solution delivered as a SaaS Service.
We have simplified our solution to allow customers who have struggled in the past with manual configuration to easily add DoS protection.