DDoS Protection

Stay Online, Under Attack

Built-in DDoS protection at the edge. L3/L4 mitigation included by default, with WAF rate limiting for L7 application-layer protection.

Get protectedSecurity documentation
DDoS Protection
Active
Incoming
2.4M
req/min
99.97%
Clean
847
req/min
Origin safe
L3/L4 Mitigation
SYN floods, UDP amplification
90+ Edge Locations
Global traffic distribution
Always on No config required
View logs
Global
Edge Network
L3/L4
Mitigation
WAF
L7 Rate Limiting
600+
Edge Locations
Edge Network

Automatic L3/L4 Protection

The global edge network provides automatic protection against network-layer attacks. SYN floods, UDP floods, and amplification attacks are absorbed before reaching your origin.

  • L3/L4 mitigation included
  • 90+ edge locations worldwide
  • Automatic attack absorption
  • No configuration required

Security documentation

Edge Network
90+ locations
L3/L4 Mitigation
Always on
SYN Floods
Protected
UDP Floods
Protected
Amplification
Protected
Global Distribution
35
Americas
28
Europe
22
Asia-Pac
5
Oceania
Automatic Scaling
Attack traffic distributed globally
Active
No config required Included free
Learn more
Rate Limiting
Active
IP Rate Limiting
Mode
Block
RPS
10/sec
Cooldown
30s
WAF Hit Rate Limiting
Hits
10 max
Window
5 min
Cooldown
300s
Bot Challenge Mode
Challenge suspicious traffic
Currently blocked
47 IPs
75% threshold
RPS limiting Bot challenge
View logs
WAF Rate Limiting

L7 Application Protection

Use WAF rate limiting to protect against HTTP floods and application-layer attacks. IP-based, header-based, and WAF hit rate limiting with configurable thresholds and bot challenge mode.

  • IP rate limiting (RPS)
  • Header-based rate limiting
  • WAF hit rate limiting
  • Bot challenge mode

WAF rate limiting

Visibility

WAF Logs & Monitoring

Monitor blocked requests in the WAF logs dashboard. View 30 days of activity with IP, ASN, location, rule ID, and block type. Filter by block type including rate limiting events.

  • 30-day log retention
  • IP and ASN lookup
  • Rate limit block types
  • Slack notifications

WAF logs

WAF Logs 30-day
IP_RATE Exceeded 10 RPS
2 min ago
IP
203.45.x.x
ASN
AS4134
Location
CN
Requests
847
WAF_RULE SQL injection attempt
5 min ago
IP
185.22.x.x
ASN
AS9009
Location
RU
Rule ID
942100
BOT_BLOCK AI crawler blocked
8 min ago
IP
35.192.x.x
ASN
AS15169
Location
US
Agent
GPTBot
Slack notifications
Connected
30-day logs Slack alerts
View all

DDoS Protection for Every Scenario

Edge network + WAF protection for all your applications.

Static Websites

Serve static content from the global edge network. Automatic L3/L4 protection included.

  • Edge delivery
  • L3/L4 mitigation
  • Global edge network
Learn more

API Protection

Protect APIs with header-based rate limiting. Limit by API key or user ID with configurable thresholds.

  • Header rate limiting
  • RPS thresholds
  • Bot challenge
Learn more

Enterprise Sites

Combine edge protection with WAF rules for defense-in-depth. Monitor with WAF logs and Slack alerts.

  • WAF + Edge network
  • Real-time monitoring
  • Slack notifications
Learn more

Government

Secure government sites with ISM-aligned infrastructure and compliance-ready DDoS protection.

  • ISM aligned
  • Compliance ready
  • Audit logging
Learn more

Bot Mitigation

Block bad bots and AI crawlers with managed dictionaries. Challenge suspicious traffic before it reaches origin.

  • Bot dictionaries
  • AI crawler blocking
  • Challenge mode
Learn more

Traffic Spikes

Handle legitimate traffic spikes during events while rate limiting suspicious patterns.

  • Edge scaling
  • Rate limiting
  • IP allowlists
Learn more

Built-in DDoS Protection

Edge network protection included with every QuantCDN deployment. Add WAF for L7 rate limiting.

Global edge network
L3/L4 mitigation
WAF rate limiting
Bot challenge mode
Get startedView pricing