API网关攻击防护

0

【以下的问题经过翻译处理】客户想知道他在区域API Gateway公共端点上的DDoS保护情况。这些请求和额外缓存是否会向客户收费？谢谢。

Topics

Serverless Front-End Web & Mobile Networking & Content Delivery

Tags

Amazon API Gateway

Language

中文 (简体)

EXPERT

rePost Polyglot

asked 6 months ago4 views

1 Answer

Newest
Most votes
Most comments

Are these answers helpful? Upvote the correct answer to help the community benefit from your knowledge.

0

【以下的回答经过翻译处理】如果您的客户API依赖于IAM、Lambda自定义授权者或Cognito身份验证，那么所有未经身份验证的请求（在DDos 7层攻击中已知）都不会对您的客户产生费用。 https://docs.aws.amazon.com/apigateway/latest/developerguide/api-gateway-pricing.html

因此，答案是是，有DDos保护费用覆盖。

这种保护也适用于“低级别”的DDos攻击，比如SYN洪水攻击（请参阅FAQ部分“我如何处理或防止API威胁或滥用？”）。

EXPERT

rePost Polyglot

answered 6 months ago

Relevant content

怎样通过CloudFormation来给DocumentDB创建一些表和索引(how to create some table and index in DocumentDB by CloudFormation）
Accepted Answer
Dgk
asked 10 months ago
S3上无法使用Chunked上传文件｜ Unable to use Chunked to upload files on S3
rePost-User-1798329
asked a year ago
sagemaker美国人口普查数据在中国宁夏区下载提示拒绝访问
LiuChuang
asked a year ago
多网络接口，多ip地址配置路由策略，从那个公网ip进入就从对应的ip出去。
rePost-User-8489725
asked a year ago
How can I secure my Amazon API Gateway WebSocket API?
AWS OFFICIALUpdated 2 years ago
How do I troubleshoot CORS errors from my API Gateway API?
AWS OFFICIALUpdated 2 years ago
How can I troubleshoot API Gateway WebSocket API connection errors?
AWS OFFICIALUpdated 2 years ago
How do I activate IAM authentication for API Gateway REST APIs?
AWS OFFICIALUpdated 3 years ago
Private, cross-account GraphQL APIs with AppSync Merged APIs
EXPERT
Antonio_Lagrotteria
published a year ago
Implementing request parameters validation in Amazon API Gateway REST API with Cloud Development Kit (CDK)
EXPERT
Vihang Shah
published 6 months ago