Set up DDoS protection | Selectel Documentation

Configure DDoS protection

Enable redirect to HTTPS⁠

In the Contol panel, on the top menu, click Products and select Web Resources.
Open the web resource page → DDoS Protection tab.
Click Edit.
Enable the **Redirect to **ggle switch from HTTP to HTTPS.
Click Apply.

You can grant or restrict access to a site or web application from certain countries.

In the Contol panel, on the top menu, click Products and select Web Resources.
Open the web resource page → DDoS Protection tab.
Click Edit.
Turn on the Country Access Policy toggle switch.
Select the type of policy:
- permissive — access to content is allowed from all countries except the specified ones;
- blocking — access to content is blocked from all countries except those specified.
Select countries:
- if you have selected an allow policy — those from which you want to block access;
- if you have selected a blocking policy — those from which you want to allow access.
Click Apply.

In order for the protection to allow all traffic from a specific IP address to pass through, it must be added to the whitelist.

In the Contol panel, on the top menu, click Products and select Web Resources.
Open the web resource page → DDoS Protection tab.
Click Edit.
In the IP Whitelist block, click Add.
Enter the IP address. You can specify an individual IPv4 address or subnet in CIDR format.
Optional: To add another IP address, click Add and enter the address. You can add an unlimited number of addresses.
Click Apply.

In order for the protection to completely block traffic from a particular IP address, it must be added to a blacklist.

In the Contol panel, on the top menu, click Products and select Web Resources.
Open the web resource page → DDoS Protection tab.
Click Edit.
In the IP Blacklist block, click Add.
Enter the IP address. You can specify an individual IPv4 address or subnet in CIDR format.
Optional: To add another IP address, click Add and enter the address. You can add an unlimited number of addresses.
Click Apply.