Preventing DDoS attacks
If you are using Fastly as your CDN in your Magnolia PaaS project, you can block IPs directly from the cockpit. Cool, huh?
Check out the instructions for doing that here.
If you are not using Fastly as your CDN, you’ll need to manually block the dangerous IP in the
ingresssection of your values.yml file.
Go to https://ipinfo.io/www.xxx.yyy.zzz (where
www.xxx.yyy.zzzis the suspicious IP).
Update your values.yml file with the following snippet:
kind: Ingress (1) metadata: annotations: nginx.ingress.kubernetes.io/server-snippet: deny www.xxx.yyy.zzz; (2)
1 Specifies the kind
2 Denies the specific IP address. Only use the `server-snippet` exactly as instructed. Otherwise, you may cause issues with your PaaS deployment.