The automatic application layer DDoS mitigation settings for a "Protection". This configuration determines whether Shield Advanced automatically manages rules in the web ACL in order to respond to application layer events that Shield Advanced determines to be DDoS attacks.

The details of a DDoS attack.

Details of a Shield event. This is provided as part of an "AttackDetail".

A single attack statistics data record. This is returned by "DescribeAttackStatistics" along with a time range indicating the time period that the attack statistics apply to.

Summarizes all DDoS attacks for a specified time period.

Describes the attack.

Information about the volume of attacks during the time period, included in an "AttackStatisticsDataItem". If the accompanying AttackCount in the statistics object is zero, this setting might be empty.

Statistics objects for the various data types in "AttackVolume".

Specifies that Shield Advanced should configure its WAF rules with the WAF Block action.

A contributor to the attack and their contribution.

Specifies that Shield Advanced should configure its WAF rules with the WAF Count action.

Contact information that the SRT can use to contact you if you have proactive engagement enabled, for escalations to the SRT and to initiate proactive customer support.

Narrows the set of protections that the call retrieves. You can retrieve a single protection by providing its name or the ARN (Amazon Resource Name) of its protected resource. You can also retrieve all protections for a specific resource type. You can provide up to one criteria per filter type. Shield Advanced returns protections that exactly match all of the filter criteria that you provide.

Narrows the set of protection groups that the call retrieves. You can retrieve a single protection group by its name and you can retrieve all protection groups that are configured with a specific pattern, aggregation, or resource type. You can provide up to one criteria per filter type. Shield Advanced returns the protection groups that exactly match all of the search criteria that you provide.

Specifies how many protections of a given type you can create.

The mitigation applied to a DDoS attack.

An object that represents a resource that is under DDoS protection.

A grouping of protected resources that you and Shield Advanced can monitor as a collective. This resource grouping improves the accuracy of detection and reduces false positives.

Limits settings on protection groups with arbitrary pattern type.

Limits settings on protection groups for your subscription.

Limits settings by pattern type in the protection groups for your subscription.

Limits settings on protections for your subscription.

Specifies the action setting that Shield Advanced should use in the WAF rules that it creates on behalf of the protected resource in response to DDoS attacks. You specify this as part of the configuration for the automatic application layer DDoS mitigation feature, when you enable or update automatic mitigation. Shield Advanced creates the WAF rules in a Shield Advanced-managed rule group, inside the web ACL that you have associated with the resource.

The attack information for the specified SubResource.

Information about the Shield Advanced subscription for an account.

Limits settings for your subscription.

A summary of information about the attack.

The counter that describes a DDoS attack.

A tag associated with an Amazon Web Services resource. Tags are key:value pairs that you can use to categorize and manage your resources, for purposes like billing or other management. Typically, the tag key represents a category, such as "environment", and the tag value represents a specific value within that category, such as "test," "development," or "production". Or you might set the tag key to "customer" and the value to the customer name or ID. You can specify one or more tags to add to each Amazon Web Services resource, up to 50 tags for a resource.

The time range.