We changed our name from IT Central Station: Here's why

How does a CDN protect against DDoS attacks?

How do CDNs work to mitigate threats?

ITCS user
22 Answers

author avatar
Top 5LeaderboardReal User

Layer 3 or 4 DDoS are absorbed by the CDN as design (IP, TCP ,UDP), the high volume doesn't reach your origin server so you are automatically protected.

But in case of layer 7 DDoS, all application attacks (SQL injections, XSS, Remote file inclusion), you need a Web Application Firewall (WAF) to protect against this kind of threat, the CDN will not "see" and of course not block these attacks (and it's not his role)

author avatar

Because the CDN have normally a WAF, a reverse proxy and a lot of locations to replicate in miliseconds your site. I know Cloudflare better and this is the response can I answer you.

Find out what your peers are saying about Imperva, Cloudflare, Microsoft and others in CDN. Updated: January 2022.
564,599 professionals have used our research since 2012.