Hi everyone,
I’m searching for a solution to protect an api running with kubernetes on Digital Ocean.
I didn’t found anything about the new Kubernetes hosting (LTD), DDoS protection and DigitalOcean in the same place…
I’m playing around right now, I would like to protect it from DDOS attacks.
Do you have some documentation or tutorial or tips to implement a way to hide/protect an API with the new Kubernetes hosting of DO ? :)
Thx a lot !
This textbox defaults to using Markdown to format your answer.
You can type !ref in this text area to quickly search our full set of tutorials, documentation & marketplace offerings and insert the link!
These answers are provided by our Community. If you find them useful, show some love by clicking the heart. If you run into issues leave a comment, or add your own answer to help others.
Get our biweekly newsletter
Sign up for Infrastructure as a Newsletter.
Hollie's Hub for Good
Working on improving health and education, reducing inequality, and spurring economic growth? We'd like to help.
Become a contributor
Get paid to write technical tutorials and select a tech-focused charity to receive a matching donation.
What exactly would you want? How is your current setup, or how will it be? I am not very familiar with kubernetes, but I think you would be able to create a Service, and let Nginx or some other proxy listen to it.
Then you can use your public IP and add a DNS record in Cloudflare towards this IP.
Hello there,
Quick update here. I’m excited to share that DigitalOcean has introduced a new feature in response to the valuable feedback we’ve received from users like you: DigitalOcean DDoS Protection:
Here are some key points about this new offering:
Cost: DigitalOcean DDoS Protection is available at no additional cost. That’s right, it’s a free service for all users!
Coverage: The protection extends to a range of DigitalOcean resources including:
Protection Layers: This service provides protection primarily at the Network (layer 3) and Transport (layer 4) layers of the OSI model. Please note that Application layer (layer 7) DDoS Protection is currently not supported.
Latency Concerns: One of the standout features of this service is that mitigation takes place entirely within the DigitalOcean network. This means that data traffic doesn’t leave our network for mitigation, ensuring that your applications experience no additional latency.
Overall Benefit: DigitalOcean DDoS Protection is an always-on service designed to defend your DigitalOcean cloud resources against a range of generalized, network-layer DDoS attacks. This ensures that your apps and websites run smoothly, without the threat of potential disruptions from such attacks.
Best,
Bobby