# DDoS Protection

A Distributed Denial of Service (DDoS) attack is a malicious attempt to disrupt normal traffic by overwhelming a target system or network with excessive requests.\
Medianova’s **DDoS Protection** automatically detects and mitigates these attacks without requiring any manual activation.\
From rate limiting to IP and Geo blocking, Medianova ensures uninterrupted availability even under heavy attack conditions.

### **How Medianova DDoS Protection Works**

Medianova integrates several protection layers designed to stop attacks before they impact your services.

<figure><img src="https://542970813-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FtK7oIwmhUHdEJcaH4Hx8%2Fuploads%2FicL7JOFdL4mE1Pca9fAY%2Fddosss.png?alt=media&#x26;token=39cd0c29-bba5-4e99-a9e3-b8b889d30339" alt=""><figcaption><p>Medianova DDoS Protection Architecture</p></figcaption></figure>

#### **Always-On Defense**

Your DDoS protection is active by default.\
There is no need for additional setup — your web assets are continuously monitored and protected against common attack types such as:

* DNS Query Floods
* Slowloris Attacks
* HTTPS GET / POST Floods

#### **Anycast DNS Infrastructure**

Medianova’s global [Anycast DNS](https://clients.medianova.com/products/dns/dns-vs-dynamic-dns-vs-anycast-dns) distributes thousands of requests across multiple servers.\
This prevents traffic overload on a single endpoint and mitigates large-scale network floods.

{% hint style="warning" %}
Anycast DNS not only improves security but also reduces latency by routing users to the nearest edge location.
{% endhint %}

#### **IP and Origin Protection**

You can reduce the risk of DDoS threats by concealing your origin IP before an attack begins.\
Medianova provides an extra layer of protection through **Secure Cloud**, limiting exposure of your origin infrastructure and filtering harmful traffic before it reaches your servers.

**Warning:** Exposing your origin IP directly allows attackers to bypass DDoS mitigation layers.

#### **Rate Limiting and Geo Blocking**

Edge-level rate limiting and Geo-based filtering restrict malicious or excessive traffic patterns.\
This ensures that legitimate users maintain access while harmful requests are dropped early in the network path.

#### **WAF Integration**

When combined with Medianova’s [**Web Application Firewall (WAF)**](https://clients.medianova.com/products/security/web-application-firewall-waf), DDoS Protection forms a complete multi-layer defense system.\
This integration protects not only against volumetric attacks but also against **application-layer threats**, such as bot floods or malicious payloads targeting web applications.

### **Best Practices**

* Conceal your origin IP using **Secure Cloud** or **Origin Shield**.
* Combine **DDoS Protection** with **WAF** for enhanced multi-layer defense.
* Keep critical DNS zones under [**Anycast DNS**](https://clients.medianova.com/products/dns/dns-vs-dynamic-dns-vs-anycast-dns) to distribute load globally.
* Regularly review threat and access logs to identify abnormal patterns.

Medianova DDoS Protection delivers continuous and intelligent protection against both volumetric and application-layer attacks.\
By combining global Anycast DNS distribution, adaptive rate limiting, and origin shielding, Medianova ensures your online services remain fast, secure, and always available.