Applies To:Show Versions
Overview: Mitigating DoS/DDoS Attacks on Protected Objects
DoS/DDoS Protection Profiles
- Throughput Capacity
- A maximum allowable throughput, in megabits per second, for the protected object. Infinite means no limit.
- Protection Profile
- A DoS protection profile configured to detect and mitigate DoS/DDoS attack based on known and discovered attack signatures.
- Eviction Policy
- An Eviction policy controlling the amount of allowable connections, based on specified high and low water marks. Once the high water mark is triggered, a number of eviction strategies can be selected to control how connections are dropped.
- IP Intelligence
- An IP intelligence policy used to control network access based on client source IP addresses.