Bunny Shield integrates a multi-level security level solution into your Bunny CDN domain. Bunny Shield is designed to scale to meet demands and attacks (however small or large) globally. Shield is divided into multiple layers of Security:
WAF: Web-Application Firewall. This contains security protection common with many security vendors and largely an automated process
DDoS Mitigation: This enables protection on the domain from targeted/automated threats.
Rate Limiting: Rate Limiting can customize number of requests/patterns to trigger an action (blocking/challenging etc)
Bot Detection: This prevents abusive scrapers or other known bad actors from accessing your site
Access Lists: This has a predefined and customizable list of ASNs and IPs you can bypass/block/log/challenge/allow access to your site
With all of the above, you can tailor your Shield experience to how strong/stateful you need the layer of protection to be. With ALL the products aforementioned, emerging threats and trends are continuously identified and updated to ensure up-to-date protection on your domain.
Bunny Shield
Bunny Shield is best utilized on an entire domain basis. For example, shielding CDN domain static.example.com (ie for static/asset-only files) on website www.example.com does not protect your www.example.com domain.
CDN Limitation
Bunny Shield currently only operates when plugged into our CDN solution and cannot be used as an isolated product.
Enabling Bunny Shield
Enabling Shield is straightforward and integrated into the CDN Pull Zone dashboard.
When ‘Get Started’ is clicked, you’re presented with a WAF profile setting. Select which best suits your use case (more will be added in due course). If unsure, just click ‘General’
On the next page, you can choose which Shield plan you wish to choose. If insure, select the Basic one and take it from there. There are analysis summaries, as well as event logs to check if you need to fine-tune/change which plan you’re currently on.
That’s it! You’re brought to the Shield overview dashboard from this point.
Learning Mode
When Shield is enabled for the first time, your Shield configuration on the pull zone is automatically put into a ‘Learning Mode’; this is to ensure your site no unexpected behaviour comes of it being enabled (ie blocking unintentionally on some assets/requests, or a scripted test identified as a ‘bad actor’). At this point we highly recommend you review the threats incoming on the domain. On the Overview page, you can review triggered WAF rules, as well as a graph displaying DDoS/Rate Limiting/WAF itself.
Learning Mode
We recommend leaving Learning Mode on during first-time integration with Bunny Shield to thoroughly review and fine-tune the product to your domain/project’s needs.
Event Logs allow you to check granularly who is triggering what and why. If in doubt of any of these triggers, please reach out to our Super Bunnies and we can guide you through any queries you have (support@bunny.net).
Learning mode can be easily exited on the main dashboard once you’re happy with the setup/triggers.