I was going through AWS CDN and i saw it has DDOS protection. After searching on internet I understood DDOS attack. Wondering what are the techniques available which can prevent this.
one possible solution i can think of is whitelisting the user IP. but that may work only for very small user group.
Any links or information will be helpful
AWS has build in protection from DDOS for every custom for free. It is called AWS Shield Standard:
All AWS customers benefit from the automatic protections of AWS Shield Standard, at no additional charge. [...] While AWS Shield Standard helps protect all AWS customers, you get particular benefit if you are using Amazon CloudFront and Amazon Route 53.
For more features (e.g. refund due to DDOS) can get AWS Shield Advanced which also protects:
However, if you are thinking about architecting your own DDOS protection for your own applications, AWS also provides a guide for that as well as best practices:
There is also recent AWS whitepaper dedicated fully to protection against DDOS on AWS: