Skip to content
By using AWS re:Post, you agree to the AWS re:Post Terms of Use
AWS re:Postre:Post
About re:Post

What happens if the DDoS traffic is totally blocked by the security group?

0

Does the traffic blocked by the security group still take into EC2 network bandwidth accounting? If the blocked traffic is huge, will the EC2 still become "denial of service" because its inbound network bandwidth is exhausted?

Topics
ComputeNetworking & Content DeliverySecurity, Identity, & Compliance
Tags
Amazon VPCAmazon EC2DDOS Protection
Language
English
asked 2 years ago471 views
2 Answers
4
Accepted Answer

You only pay for data out of the VPC and inbound is free from the internet. And because the security group drops the traffic there will be no return communication from the EC2 therefore you will not be charged. The EC2 bandwidth will not be effected as it’s dropped before hitting the EC2.

EXPERT
answered 2 years ago
AWS
EXPERT
reviewed 2 years ago
  • zentic
    2 years ago

    Very helpful. Thank you very much :-)

-1

i don't understand why you didn't use Advanced AWS shield service instead of security group to prevent the DDos attack ?

answered 2 years ago

You are not logged in. Log in to post an answer.

A good answer clearly answers the question and provides constructive feedback and encourages professional growth in the question asker.

Relevant content