Anti-DDoS on Flexible Engine

Technical additional documentation

This article explains the Anti-DDoS protections on Flexible Engine

Default Anti-DDoS solution

By default on Flexible Engine, all customers ressources and platform are protected.
Regarding customers ressources, in case of an attack, traffic to their EIP can be blackholed in order to protect the whole platform.
This solution is included for every customers

Case of an attack targeting the platform


Case of an attack targeting customer EIP


Self Service Anti-DDoS Solution

Available directly from console, you can enable and configure the feature. After that, automatic remedation will be operated but it can handle only low or mid size attack (few Gbps). If the attack is upper this limit, the default Anti-DDoS Solution will be applied.
More documentation here
This solution is provided for free for every customers

Case of an attack targeting customer EIP and protected by Self Service Anti-DDoS solution


Orange DDoS Protection Cleanpipe Anti-DDoS Solution

Based on a additionnal Orange offer, named DDoS Protection Cleanpipe. It offer a fully managed advanced anti-DDoS solution to let you protect your ressources.
The solution is fully managed by Orange Cyberdefense expertise in this domain. You just indicate the threshold for protection and (optionnal) the remedation policy.
Automatic remediation will be applied in case of attack and it can cover every size of attack which avoid to being blackholed by the default anti-DDoS solution.
More documentation here
This solution has to be subscribed as a 3rd party solution

Case of an attack targeting customer EIP and protected by Orange DDoS Protection Cleanpipe