I am under DDoS attack. How can Imperva help?

If you are currently under a DDoS attack and have no protection, click the Under DDoS Attack button on our homepage to reach our DDoS Mitigation team. Our experts will assist you in mitigating the attack and support your business during recovery. Our solution quickly detects the attack, filters out malicious traffic, and restores normal service to minimize downtime.

How does Imperva DDoS Protection minimize downtime during an attack?

Imperva’s DDoS Protection automatically detects and mitigates attacks in real-time. We combine advanced Anycast technology with real-time capacity management to ensure optimal performance. Traffic is dynamically routed through the most efficient paths, reducing latency and improving network speed, even during high-demand periods or DDoS attacks. Simultaneously, real-time capacity management monitors network conditions at every point of presence (PoP), allocating resources to prevent congestion and ensure smooth operations under any traffic load.This keeps downtime to a minimum and allows your operations to continue without interruption.

Will using Imperva DDoS Protection increase my bandwidth costs?

No, Imperva’s solution prevents the need to scale up bandwidth by automatically blocking attack traffic. This allows you to avoid additional bandwidth costs that are typically associated with managing large-scale DDoS attacks. In addition, our globally distributed network ensures minimal latency even during large-scale DDoS attacks. This extensive reach allows you to maintain high performance and reliability without the need to increase bandwidth usage.

What types of attacks does Imperva DDoS Protection mitigate?

Imperva mitigates a wide range of DDoS attacks, including both Layer 3/4 (e.g., UDP floods, SYN floods, DNS amplification) and Layer 7 attacks (e.g., HTTP(S) GET/POST request floods, SlowLoris attack). We also offer DDoS Protection for Individual IPs. Our multi-layered approach ensures comprehensive protection against the most complex attacks.

How does Imperva minimize the number of false positives?

Imperva minimizes false positives by leveraging advanced machine learning algorithms that analyze traffic patterns and automatically set optimal thresholds for Layer 7 DDoS attacks. This adaptive protection system continuously defends your applications against evolving threats without manual configuration adjustments. Using heuristic, behavioral, and contextual analysis, along with crowdsourced data, we accurately distinguish between legitimate and malicious traffic. Only 0.01% of visitors encounter CAPTCHA challenges, ensuring a seamless user experience. Regular updates from our research team further strengthen defenses against emerging threats, providing reliable protection with minimal disruption.

What is the difference between Always-On and On-Demand DDoS Protection?

Imperva Always-On DDoS Protection provides continuous, real-time monitoring and mitigation against DDoS attacks, ensuring that your network is protected at all times without any latency. It automatically absorbs and mitigates threats as they occur, offering immediate defense. In contrast, On-Demand DDoS Protection requires manual activation when an attack is detected. While it still offers robust protection, there may be a delay in activation, potentially exposing your network to risk during that window. Always-On protection is ideal for organizations seeking uninterrupted security, while On-Demand is suitable for those who prefer to activate protection only when necessary.

How does Imperva notify me of a DDoS attack?

Imperva provides instant attack notifications through various channels, including email, SMS, and a mobile app. This ensures that you are immediately informed and can take appropriate action if necessary.

Can Imperva DDoS Protection integrate with my existing security infrastructure?

Yes, Imperva DDoS Protection seamlessly integrates with leading Security Information and Event Management (SIEM) systems. This allows you to correlate DDoS events with other security data, providing greater visibility into potential threats.

What are Ransom DDoS Attacks and how can Imperva protect against them?

Ransom DDoS (RDoS) attacks occur when cybercriminals threaten to flood your network with a Distributed Denial of Service (DDoS) attack unless a ransom is paid, typically in Bitcoin. Imperva offers robust and scalable DDoS mitigation solutions that ensure continuous protection without manual intervention. With our advanced technology, you can prepare for RDoS attacks by evaluating risks and understanding your organization’s vulnerability to downtime. By partnering with Imperva, you can build a comprehensive response plan, ensuring resilience during an attack and minimizing disruption to your operations.

What are ReDoS Attacks and how can Imperva protect against them?

Regular Expression Denial of Service (ReDoS) attacks exploit vulnerabilities in regular expressions, leading to significant slowdowns or crashes in your systems. Attackers can trigger these issues with crafted input that activates inefficient regex patterns, causing extreme computational delays or resource exhaustion. Imperva helps protect against ReDoS attacks by optimizing regex patterns and validating inputs to prevent exploitation. Our monitoring solutions detect potential threats early, allowing you to mitigate ReDoS attacks effectively before they impact your system’s performance.

Home > Application Security > DDoS Protection

DDoS Protection

Imperva’s advanced DDoS protection defends against volumetric, protocol-based, and Layer 7 attacks, ensuring fast mitigation and business continuity with a 3-second SLA.

Free trialSchedule demo

Comprehensive DDoS mitigation for Layer 3, 4, and 7 attacks

DDoS attacks can disrupt operations, slow performance, and lead to costly downtime. Without fast mitigation and proactive defense, organizations risk losing revenue and facing significant recovery costs during an attack. Imperva helps ensure your business stays online and protected.

Ensure business continuity

Every second counts when defending against a DDoS attack. Imperva prevents downtime fast and effective mitigation for all DDoS attacks and a guaranteed 3-second mitigation SLA for Layers 3 and 4 DDoS attacks.

Reduce costs

Every hour of downtime costs organizations tens of thousands of dollars in lost business and recovery costs. Imperva ensures business continuity with no performance impact.

Optimize performance

When under DDoS attack increased bandwidth usage slows performance drives up costs. Imperva gives you peace of mind that attack traffic will be blocked at the edge meaning no need for extra bandwidth.

DDoS mitigation for unmatched performance

Fast time to mitigation for all DDoS attacks

Imperva provides a consistently fast time to mitigation for all types of DDoS attacks, ensuring your network stays protected with minimal downtime. For added assurance, we offer a guaranteed SLA of 3 seconds or less for DDoS attacks targeting Layers 3 and 4, delivering industry-leading protection against volumetric and protocol-based threats.

Adaptive protection against Layer 7 DDoS attacks

Quick onboarding with fully automated DDoS protection

Imperva’s Application Security platform offers seamless self-onboarding and management, allowing users to easily configure and adjust DDoS protection settings through a self-service portal. Once set up, the platform’s fully-automated DDoS protection neutralizes threats without manual intervention, ensuring continuous defense even in on-demand mode. This combination streamlines management and guarantees round-the-clock protection, minimizing risks and maximizing uptime.

Global network for high-speed, low-latency traffic management

Imperva’s extensive global network ensures 95% of the world experiences sub-50 millisecond latency, delivering rapid, reliable performance even during DDoS attacks. Utilizing advanced Anycast routing and real-time capacity management, traffic is dynamically optimized across the most efficient paths, ensuring minimal latency and enhanced network speed. This system provides consistent, responsive service while preventing congestion and maintaining smooth operations during peak demand or attacks, making it ideal for international businesses requiring fast, efficient data transmission.

Seamless compatibility with any Internet Service Provider

Imperva’s DDoS Protection is fully ISP-agnostic, meaning it works seamlessly with any Internet Service Provider. This flexibility allows you to implement a unified, robust defense strategy across all ISPs without compatibility concerns, simplifying deployment and enhancing network resilience.

DDoS Protection

DDoS attacks are increasingly sophisticated and often automated, leading to significant financial and reputational damage from even brief downtime. Imperva DDoS Protection provides fast, scalable defense against advanced attacks, ensuring your operations remain available. Whether the threat targets the application layer, network layer, individual IPs, or DNS Servers, Imperva swiftly mitigates disruptions, safeguarding your infrastructure and enabling quick recovery.

Download datasheet

Ready to take your security to the next level?

See for yourself. No strings attached.

Free trial

Schedule demo

The DDoS Threat Landscape in 2024

111% increase in DDoS attacks mitigated by Imperva

Download now

Ensure protection against the most sophisticated DDoS attacks

Looking for DDoS protection? Imperva offers advanced, multi-layered DDoS protection with three robust options to defend against the rising number, size, and complexity of DDoS attacks. Ensure your business is secure with comprehensive DDoS mitigation strategies.

Website Protection

Always-on protection automatically detects and mitigates application layer DDoS attacks targeting your websites, APIs, and applications. By ensuring continuous uptime and performance, this protection enhances customer trust, minimizes downtime, and safeguards revenue.

Protect websites from volumetric DDoS attacks

Imperva DDoS Protection for Websites works alongside our cloud web application firewall (WAF) to block attacks and malicious bots. By routing all HTTP/S traffic through our secure proxy via a simple DNS change, we mask your origin server’s IP and filter out DDoS traffic, ensuring legitimate requests get through without delays. With 13 Tbps of global scrubbing capacity and fast Time to Mitigation (TTM), we provide seamless, always-on protection against any attack. No CAPTCHAs, no latency—just fast, reliable defense. Integrates with Imperva’s full Application Security platform for comprehensive protection.

DDoS Protection for Websites datasheet

DDoS Protection for Websites datasheet

Networks Protection

Imperva DDoS protection for networks safeguards critical network assets by providing seamless, automated DDoS mitigation. This ensures uninterrupted performance across network infrastructure, increasing operational reliability, reduced downtime costs, and improved customer satisfaction.

Mitigate network DDoS attacks in 3 seconds or less

Imperva DDoS Protection for Networks shields entire infrastructures with 13 Tbps of multi-terabit scrubbing capacity and high-capacity packet processing, instantly mitigating even the largest DDoS attacks—typically within 1 second. It protects against volumetric and multi-vector Layer 3, 4, ensuring constant protection for any network protocol under attack and keeping your network resilient. Flexible deployment options include GRE tunnels, Cross Connects, GRE tunnels, and virtual Cross Connects such as Equinix Fabric Cloud Exchange, as well as with always-on or on-demand protection. service . Flow-based monitoring and automatic or manual switchover provide seamless control, ensuring constant protection for any network protocol under attack.

DDoS Protection for Networks datasheet

DDoS Protection for Networks datasheet

Individual IP Protection

Always-on protection safeguards your internet-facing websites or services hosted on individual IPs, whether on-premises or in the cloud. By preventing disruptions, this ensures consistent service delivery, enhances user experience, and protects your business reputation.

Defend IPs with Layer 3 and 4 DDoS protection

Imperva DDoS Protection for Individual IPs is designed to safeguard specific IPs from network layer 3 and 4 attacks. This service, tailored for non-HTTP assets or assets that due to regulation cannot be inspected by a cloud based WAF, is particularly beneficial if your applications are hosted on a single server or if you do not have control over the entire network infrastructure.

Imperva IP Protection allows organizations to direct all ingress traffic and egress traffic for a specific IP to the Imperva network. An IP from the Imperva IP ranges is provided as an alternative destination for the protected server, ensuring that all traffic to that server is routed through Imperva.This service leverages Imperva’s multi-Terabit network capacity and packet processing capabilities to absorb and mitigate the largest and most sophisticated DDoS attacks.

DDoS Protection for Individual IPs datasheet

Gartner® and Peer Insights™ are trademarks of Gartner, Inc. and/or its affiliates. All rights reserved. Gartner Peer Insights content consists of the opinions of individual end users based on their own experiences, and should not be construed as statements of fact, nor do they represent the views of Gartner or its affiliates. Gartner does not endorse any vendor, product or service depicted in this content nor makes any warranties, expressed or implied, with respect to this content, about its accuracy or completeness, including any warranties of merchantability or fitness for a particular purpose.

Comprehensive application security

Imperva DDoS protection is seamlessly integrated into the Imperva Application Security platform to protect applications and APIs anywhere, at scale. The Imperva platform provides defense in depth to safeguard your entire application infrastructure from a wide range of network and application threats, mitigating your risk exposure while optimizing user experience.

See Imperva Application Security Platform

Imperva application security platform stack 430

By filtering malicious traffic, Imperva prevented service disruption and allowed us to maintain operations, uninterrupted, despite the day-long attack, helping to ensure customer access to power.

Nathan Lindbergh Caldeira Cyber Security Operations Manager Read full customer story

DDoS Protection FAQs

I am under DDoS attack. How can Imperva help?

If you are currently under a DDoS attack and have no protection, click the Under DDoS Attack button on our homepage to reach our DDoS Mitigation team. Our experts will assist you in mitigating the attack and support your business during recovery. Our solution quickly detects the attack, filters out malicious traffic, and restores normal service to minimize downtime.
How does Imperva DDoS Protection minimize downtime during an attack?

Imperva’s DDoS Protection automatically detects and mitigates attacks in real-time. We combine advanced Anycast technology with real-time capacity management to ensure optimal performance. Traffic is dynamically routed through the most efficient paths, reducing latency and improving network speed, even during high-demand periods or DDoS attacks. Simultaneously, real-time capacity management monitors network conditions at every point of presence (PoP), allocating resources to prevent congestion and ensure smooth operations under any traffic load.This keeps downtime to a minimum and allows your operations to continue without interruption.
Will using Imperva DDoS Protection increase my bandwidth costs?

No, Imperva’s solution prevents the need to scale up bandwidth by automatically blocking attack traffic. This allows you to avoid additional bandwidth costs that are typically associated with managing large-scale DDoS attacks. In addition, our globally distributed network ensures minimal latency even during large-scale DDoS attacks. This extensive reach allows you to maintain high performance and reliability without the need to increase bandwidth usage.
What types of attacks does Imperva DDoS Protection mitigate?

Imperva mitigates a wide range of DDoS attacks, including both Layer 3/4 (e.g., UDP floods, SYN floods, DNS amplification) and Layer 7 attacks (e.g., HTTP(S) GET/POST request floods, SlowLoris attack). We also offer DDoS Protection for Individual IPs. Our multi-layered approach ensures comprehensive protection against the most complex attacks.
How does Imperva minimize the number of false positives?

Imperva minimizes false positives by leveraging advanced machine learning algorithms that analyze traffic patterns and automatically set optimal thresholds for Layer 7 DDoS attacks. This adaptive protection system continuously defends your applications against evolving threats without manual configuration adjustments. Using heuristic, behavioral, and contextual analysis, along with crowdsourced data, we accurately distinguish between legitimate and malicious traffic. Only 0.01% of visitors encounter CAPTCHA challenges, ensuring a seamless user experience. Regular updates from our research team further strengthen defenses against emerging threats, providing reliable protection with minimal disruption.
What is the difference between Always-On and On-Demand DDoS Protection?

Imperva Always-On DDoS Protection provides continuous, real-time monitoring and mitigation against DDoS attacks, ensuring that your network is protected at all times without any latency. It automatically absorbs and mitigates threats as they occur, offering immediate defense.

In contrast, On-Demand DDoS Protection requires manual activation when an attack is detected. While it still offers robust protection, there may be a delay in activation, potentially exposing your network to risk during that window. Always-On protection is ideal for organizations seeking uninterrupted security, while On-Demand is suitable for those who prefer to activate protection only when necessary.
How does Imperva notify me of a DDoS attack?

Imperva provides instant attack notifications through various channels, including email, SMS, and a mobile app. This ensures that you are immediately informed and can take appropriate action if necessary.
Can Imperva DDoS Protection integrate with my existing security infrastructure?

Yes, Imperva DDoS Protection seamlessly integrates with leading Security Information and Event Management (SIEM) systems. This allows you to correlate DDoS events with other security data, providing greater visibility into potential threats.
What are Ransom DDoS Attacks and how can Imperva protect against them?

Ransom DDoS (RDoS) attacks occur when cybercriminals threaten to flood your network with a Distributed Denial of Service (DDoS) attack unless a ransom is paid, typically in Bitcoin. Imperva offers robust and scalable DDoS mitigation solutions that ensure continuous protection without manual intervention. With our advanced technology, you can prepare for RDoS attacks by evaluating risks and understanding your organization’s vulnerability to downtime. By partnering with Imperva, you can build a comprehensive response plan, ensuring resilience during an attack and minimizing disruption to your operations.
What are ReDoS Attacks and how can Imperva protect against them?

Regular Expression Denial of Service (ReDoS) attacks exploit vulnerabilities in regular expressions, leading to significant slowdowns or crashes in your systems. Attackers can trigger these issues with crafted input that activates inefficient regex patterns, causing extreme computational delays or resource exhaustion. Imperva helps protect against ReDoS attacks by optimizing regex patterns and validating inputs to prevent exploitation. Our monitoring solutions detect potential threats early, allowing you to mitigate ReDoS attacks effectively before they impact your system’s performance.