Yandex Smart Web Security overview
Yandex Smart Web Security is a service for protection against DDoS attacks and bots at application level L7 of the OSI model.
You can connect the service to Yandex Application Load Balancer virtual hosts.
Smart Web Security checks the HTTP requests sent to the protected resource via the virtual host of the L7 load balancer against the rules configured in the security profile. Depending on the results of the check, the requests are routed to the virtual host, blocked, or sent to Yandex SmartCaptcha for additional verification.
To protect your web apps from external threats, Smart Web Security also implements a Web Application Firewall (WAF).
Monitor and limit web app loads with the help of Advanced Rate Limiter (ARL).
Smart Web Security logs are sent to Yandex Cloud Logging.
Smart Web Security metrics are sent to Yandex Monitoring.
Smart Web Security audit logs are sent to Yandex Audit Trails.
Note
To enhance your security, we use HTTP request data to improve our machine learning (ML) models. You can disable the use of this information in the management console when creating a security profile or later in its settings.
Application Load Balancer coniguration recommendations
To enhance DDoS protection of your applications, consider these additional tips:
- Configure autoscaling. This will allow you to dynamically adapt to the increased load and optimize traffic redistribution.
- Place resource units in multiple availability zones.
- Use the secure HTTPS protocol: configure a listener to automatically redirect requests from HTTP to HTTPS.
- Ensure protection at the lower OSI model level: enable basic DDOS protection at L3 and L4 to prevent some attacks at an earlier stage.
These measures, in addition to setting up Smart Web Security, will increase the resilience of your services to potential threats and ensure security of your applications.