General information about DDoS protection
A DDoS attack is a distributed denial-of-service attack. During an attack, a large number of requests are sent to a service to reduce the performance of the service or to shut it down completely. Learn more about DDoS attacks and protection methods in the Selectel blog article How to protect your server from DDoS attacks.
All Selectel products are protected by default. To increase the security of the service, you can activate additional protection. For more information on selecting a protection service, see the Select additional protection subsection.
Types of protection
Default protection
Selectel DDoS protection is automatically enabled for all IP addresses in the Selectel standalone system
Protection is provided at the network and transport (L3, L4) layers.Incoming traffic is analyzed, flows of unwanted traffic from the external network are blocked.

Additional protection
For IP addresses that are used in Selectel's infrastructure, it is possible to activate protection services based on solutions from partners:
Incoming traffic is sent to the partner filtering system, where it is analyzed and cleaned, then the cleaned traffic is redirected to the protected server in Selectel infrastructure.

Select additional protection
- Determine the purpose of the defense.
- Choose the DDoS protection service that is right for you. that suits your needs.
1. Define the purpose of the defense
2. Choose a DDoS protection service
* You can additionally protect your application from targeted attacks by using the WAF Curator.
** You can additionally protect your application from targeted attacks with a WAF StormWall.