You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/ddos-protection/ddos-protection-sku-comparison.md
+3-2Lines changed: 3 additions & 2 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -5,7 +5,7 @@ author: AbdullahBell
5
5
ms.author: Abell
6
6
ms.service: ddos-protection
7
7
ms.topic: conceptual
8
-
ms.date: 05/11/2023
8
+
ms.date: 05/23/2023
9
9
ms.custom: template-concept, ignite-2022
10
10
---
11
11
@@ -59,7 +59,6 @@ DDoS Network Protection and DDoS IP Protection have the following limitations:
59
59
- PaaS services (multi-tenant), which includes Azure App Service Environment for Power Apps, Azure API Management in deployment modes other than APIM with virtual network integration (For more informaiton see https://techcommunity.microsoft.com/t5/azure-network-security-blog/azure-ddos-standard-protection-now-supports-apim-in-vnet/ba-p/3641671), and Azure Virtual WAN aren't currently supported.
60
60
- Protecting a public IP resource attached to a NAT Gateway isn't supported.
61
61
- Virtual machines in Classic/RDFE deployments aren't supported.
62
-
- Scenarios in which a single VM is running behind a public IP is not recommended. For more information, see [Fundamental best practices](./fundamental-best-practices.md#design-for-scalability)
63
62
- VPN gateway or Virtual network gateway is protected by a fixed DDoS policy. Adaptive tuning is not supported at this stage.
64
63
- Disabling DDoS protection for a public IP address is currently a preview feature. If you disable DDoS protection for a public IP resource that is linked to a virtual network with an active DDoS protection plan, you will still be billed for DDoS Network Protection. However, the following functionalities will be suspended: mitigation of DDoS attacks, telemetry, and logging of DDoS mitigation events.
65
64
- Partially supported: the Azure DDoS Protection service can protect a public load balancer with a public IP address prefix linked to its frontend. It effectively detects and mitigates DDoS attacks. However, telemetry and logging for the protected public IP addresses within the prefix range are currently unavailable.
@@ -69,6 +68,8 @@ DDoS IP Protection is similar to Network Protection, but has the following addit
69
68
70
69
- Public IP Basic SKU protection isn't supported.
71
70
71
+
>[!Note]
72
+
>Scenarios in which a single VM is running behind a public IP is supported, but not recommended. For more information, see [Fundamental best practices](./fundamental-best-practices.md#design-for-scalability).
72
73
73
74
For more information, see [Azure DDoS Protection reference architectures](./ddos-protection-reference-architectures.md).
![prmerger-automator[bot]](https://avatars.githubusercontent.com/u/22479449?v=4&size=40){kind=avatar}
0 commit comments