This repository provides holistic architecture design and reference implementation for industry cloud based on proven success of large scale deployments and at-scale adoption with customers and partners.
MIT License
257
stars
74
forks
source link
Optional DDoS configuration for public IPs only #442
Currently we provide an option to enable DDoS Protection plan or not, which will be enforced via Azure policy if set to "Yes". We need another option to only add DDoS protection to individual Public IPs that are being created for platform resources (Express Gateway, AFW etc.), and then also opt-out of that specific policy in compliant networking when conditions are true.
Describe the solution you'd like
Currently we provide an option to enable DDoS Protection plan or not, which will be enforced via Azure policy if set to "Yes". We need another option to only add DDoS protection to individual Public IPs that are being created for platform resources (Express Gateway, AFW etc.), and then also opt-out of that specific policy in compliant networking when conditions are true.