11-13-2019, 01:54 PM
There are steps you can take to help minimize this in your application. However the rest of IIS will still be exposed so it is better to implement a general DDOS prevention rather than one specific to just one application.
From the IIS level, even it is recommended to implement it a level above IIS using a firewall. By the time it reaches IIS its already had to use a socket and a DDOS attack can occur even at that low level. So if you really want to effectively prevent DDOS you need to do it at a level that is lower on the network API than IIS where it can prevent a socket from ever being established which means via a firewall.
From the IIS level, even it is recommended to implement it a level above IIS using a firewall. By the time it reaches IIS its already had to use a socket and a DDOS attack can occur even at that low level. So if you really want to effectively prevent DDOS you need to do it at a level that is lower on the network API than IIS where it can prevent a socket from ever being established which means via a firewall.