Web DDoS Protection
Global MPLS network
with 43 PoPs
bandwidths of up to
How the Link11
DDoS Web technology works
For this, a separate domain-specific x.509 certificate must be uploaded within the web DDoS protection and the special TLS termination must be switched on. This allows all TLS connections to be analyzed and decrypted. Traffic is then checked for DDoS attacks, re-encrypted and finally forwarded to the Origin server.
DDoS detection and protection measures
The technology checks the response times and HTTP 50x error messages reported by the backend and automatically launches defense algorithms if anomalies are detected.
The defense mechanism works internally, using a scoring system that evaluates the anomalies and, once a certain threshold is reached, starts blocking IP addresses with conspicuously high scores.
The points allocation and the resulting implementation of the blockade work dynamically and range between 300 and 76,200 seconds per IP address.