Does the AWS shield used by One Model come with API protection?


AWS Shield standard is enabled by default. AWS Shield Advanced is not enabled by default and One Model's current approach is to only enable this in response to a DDOS attack on our servers.

One Model uses AWS WAFV2 in front of our API Gateway (Traefik), which serves traffic to our web application and other services. As part of the WAF One Model have managed rules by AWS, custom rules managed by us and a rate throttling threshold (to prevent some DDOS attacks).

Was this article helpful?

0 out of 0 found this helpful



Please sign in to leave a comment.