More question answered from an AWS course.
- Does the AWS ELB have the ability to throttle requests, to stop invalid/illegal traffic – if someone refreshes a page 10 times in 5 seconds and I want to block the unnecessary requests from the refreshes?
- no throttling is available with the classic ELB. However, check out the Application Load Balancer, which has a WAF integrated with it.
- What is the availability of the ELB component?
- I couldn’t find firm numbers, but here’s an interesting article about ELB best practices.
- In a DDOS attack, since there is a lot of traffic to your environment, do you get charged for the additional traffic?
- Depending on the attack type, not if you are fronted by an ELB or set up your security groups/NACLs to discard the traffic. From the DDOS whitepaper: “When [an ELB detects certain types of attacks], it will automatically scale to absorb the additional traffic but you will not incur any additional charges.”
- When an instance is decommissioned from an ASG, does the ELB know not to send new sessions to that ASG because the instance is getting ready to shut down?