AWS Shield

AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS. AWS Shield provides always-on detection and automatic inline mitigations that minimize application downtime and latency, so there is no need to engage AWS Support to benefit from DDoS protection. There are two tiers of AWS Shield – Standard and Advanced.

All AWS customers benefit from the automatic protections of AWS Shield Standard, at no additional charge. AWS Shield Standard defends against most common, frequently occurring network and transport layer DDoS attacks that target your web site or applications. When you use AWS Shield Standard with Amazon CloudFront and Amazon Route 53, you receive comprehensive availability protection against all known infrastructure (Layer 3 and 4) attacks.

For higher levels of protection against attacks targeting your applications running on Amazon Elastic Compute Cloud (EC2), Elastic Load Balancing (ELB), Amazon CloudFront, AWS Global Accelerator and Amazon Route 53 resources, you can subscribe to AWSShield Advanced. In addition to the network and transport layer protections that come with Standard, AWS Shield Advanced provides additional detection and mitigation against large and sophisticated DDoS attacks, near real-time visibility into attacks, and integration with AWS WAF, a web application firewall. AWSShield Advanced also gives you 24×7 access to the AWS DDoS Response Team (DRT) and protection against DDoS related spikes in your Amazon Elastic Compute Cloud (EC2), Elastic Load Balancing (ELB), Amazon CloudFront, AWS Global Accelerator and Amazon Route 53 charges.

AWS Shield Advanced is available globally on all Amazon CloudFront, AWS Global Accelerator, and Amazon Route 53 edge locations. You can protect your web applications hosted anywhere in the world by deploying Amazon CloudFront in front of your application. Your origin servers can be Amazon S3, Amazon Elastic Compute Cloud (EC2), Elastic Load Balancing (ELB), or a custom server outside of AWS. You can also enable AWS Shield Advanced directly on an Elastic IP or Elastic Load Balancing (ELB) in the following AWS Regions – Northern Virginia, Ohio, Oregon, Northern California, Montreal, São Paulo, Ireland, Frankfurt, London, Paris, Stockholm, Singapore, Tokyo, Sydney, Seoul, and Mumbai.

Below are the cmdlets which are available with AWS Shield

Add-SHLDHealthCheck                                AssociateHealthCheck                          
Add-SHLDProactiveEngagementDetail                  AssociateProactiveEngagementDetails           
Disable-SHLDProactiveEngagement                    DisableProactiveEngagement                    
Enable-SHLDProactiveEngagement                     EnableProactiveEngagement                     
Get-SHLDAttack                                     DescribeAttack                                
Get-SHLDAttackList                                 ListAttacks                                   
Get-SHLDDRTAccess                                  DescribeDRTAccess                             
Get-SHLDEmergencyContactSetting                    DescribeEmergencyContactSettings              
Get-SHLDProtection                                 DescribeProtection                            
Get-SHLDProtectionList                             ListProtections                               
Get-SHLDSubscription                               DescribeSubscription                          
Get-SHLDSubscriptionState                          GetSubscriptionState                          
Grant-SHLDDRTLogBucketAssociation                  AssociateDRTLogBucket                         
Grant-SHLDDRTRoleAssociation                       AssociateDRTRole                              
New-SHLDProtection                                 CreateProtection                              
New-SHLDSubscription                               CreateSubscription                            
Remove-SHLDHealthCheck                             DisassociateHealthCheck                       
Remove-SHLDProtection                              DeleteProtection                              
Remove-SHLDSubscription                            DeleteSubscription                            
Revoke-SHLDDRTLogBucketAssociation                 DisassociateDRTLogBucket                      
Revoke-SHLDDRTRoleAssociation                      DisassociateDRTRole                           
Update-SHLDEmergencyContactSetting                 UpdateEmergencyContactSettings                
Update-SHLDSubscription                            UpdateSubscription                            

You can also check other AWS Services, and each services cmdlets we are providing.

Click on this Link for an Single place, where you get all the PowerShell cmdlets sorted based on the modules.

You can also refer other blogs on PowerShell at link

You can also refer other blogs on Microsoft at link

And also if you required any technology you want to learn, let us know below we will publish them in our site

Like our page in Facebook and follow us for New technical information.

References are taken from Microsoft and AWS

Leave a Reply

Your email address will not be published. Required fields are marked *