Overview
Get started
About
How DDoS protection works
Main components
Attack coverage
Managed rulesets
HTTP DDoS Attack Protection

Configure in the dashboard
Configure via API
Rule categories
Parameters
Override expressions

Network-layer DDoS Attack Protection

Configure in the dashboard
Configure via API
Rule categories
Parameters
Override expressions

Adaptive DDoS Protection
Adjusting DDoS rules

Handle a false positive
Handle a false negative or an incomplete mitigation
Advanced TCP Protection
Setup
Concepts
How to

Add a prefix
Add an IP or prefix to the allowlist
Create a rule
Exclude a prefix

API configuration

Common API calls
JSON objects

Rule settings
Mitigation reasons
Best practices
Third-party services and DDoS protection
Prevent DDoS attacks
Respond to DDoS attacks
Reference
Analytics
Reports
Alerts
Logs
Simulating test DDoS attacks
Changelog
Network-layer DDoS managed ruleset

Scheduled changes
2023-07-31
2023-04-17
2022-12-02
2022-10-24
2022-10-06
2022-09-21
2022-09-16
2022-04-12

HTTP DDoS managed ruleset

Scheduled changes
2023-09-05 - Emergency
2023-08-30 - Emergency
2023-08-29 - Emergency
2023-08-25 - Emergency
2023-08-16 - Emergency
2023-08-14
2023-08-11 - Emergency
2023-07-31
2023-07-17
2023-07-12 - Emergency
2023-07-07
2023-07-06
2023-06-28
2023-06-19
2023-06-16
2023-06-14 - Emergency
2023-06-06
2023-06-05 - Emergency
2023-05-26
2023-05-22
2023-05-16 - Emergency
2023-05-15 - Emergency
2023-05-02 - Emergency
2023-04-27 - Emergency
2023-04-21 - Emergency
2023-04-17
2023-04-03
2023-03-22
2023-03-10
2023-02-28 - Emergency
2023-02-20
2023-01-30
2022-12-07 - Emergency
2022-11-02 - Emergency
2022-10-14
2022-10-06 - Emergency
2022-09-19 - Emergency
2022-09-14
2022-09-13
2022-08-16
2022-08-10
2022-08-02
2022-07-18
2022-07-08
2022-07-06
2022-06-08
2022-06-01
2022-05-12
2022-05-03
2022-04-21
2022-04-12
2022-04-07

2023-05-15 - Emergency

Rule ID	Description	Previous Action	New Action	Notes
...1fc1e601	HTTP requests with unusual HTTP headers or URI path (signature #31).	N/A	block
...863134d5	HTTP requests from known bad user agents.	block	block	Widen detection scope.
...bb3cefd0	HTTP requests with unusual HTTP headers or URI path (signature #53).	N/A	block
...d2f294d7	HTTP requests trying to impersonate browsers.	ddos_dynamic	ddos_dynamic	Extend the rule to catch attacks across multiple subdomains.
...d2f294d7	HTTP requests trying to impersonate browsers.	ddos_dynamic	ddos_dynamic	Expand the filter to catch more attacks.
...f2494447	HTTP requests attempting to bypass the cache.	ddos_dynamic	ddos_dynamic	Make rule more accurate when blocking attacks.