0

We are using Azure Static Web App for hosting a web-precense.

Right now I am asking myself, if/how an Azure SWA is DDos protected.

As the SWA is not part of a VNET, the optional Azure DDoS Protection can not be applied.

References I found so far:

  • "Globally distributed static content, putting content closer to your users."[1] This smells like a CDN, which would be a good indicator for having a DDoS protection somehow, but I can't find any details
  • "Services running on Azure are inherently protected by the default infrastructure-level DDoS protection."[2] Ok so somehow every service in Azure has a default DDos protection, but I can't find any details

Is an Azure Static Web App DDoS protected? If so, how?

Markus Schulte
  • 4,171
  • 3
  • 47
  • 58

1 Answers1

1

Azure DDoS Basic is built into the platform and enabled for all services. You can find some details of what that offers, vs the standard offering, here. DDoS standard is the more user configurable option, but as you say this is only available when using a vNet.

enter image description here

Sam Cogan
  • 4,124
  • 7
  • 44
  • 76