Incapsula’s DDoS protection offers a complete defense against all types of DDoS threats, including network-based attacks, like SYN or UDP floods, and application attacks, like Slowloris, HTTP Flood and RUDY, that attempt to overwhelm server resources. The service also detects attempts to exploit application-specific vulnerabilities like buffer overflow, SQL injection, or remote file inclusion. Unique bot-detection technology differentiates real users from automated clients to augment detection.
Enterprise users can purchase larger DDoS protection plans of up to Unlimited DDoS Protection.
How does it work?
Incapsula’s DDoS protection is a based on advanced filtering engines that can tell apart legitimate traffic from DDoS traffic. Incapsula proxies classify any incoming traffic to the web site and determine whether it is generated by web site visitors, legitimate bots or DDoS bots. Any suspected visitor that will fail the configured DDoS challenge will be blocked.
For additional information, see also: Setting Up the DDoS Mitigation Service