@53654583
Thank you for reaching out to Microsoft Q&A.
So there are a few aspects -
- Time it takes to adjust policy thresholds after you enabled DDoS Standard and 2) Time it takes between the time we detect an attack and applying mitigation
For #1 - DDoS Policies are applied per public IP. Initially your IP will have a set of baseline policies. If there is traffic to the IP, then within approximately 20 minutes, the policies will transition from baseline to tuned policies.
Ideally, you would be able to enable DDoS Standard during normal traffic and not under attack so that we can use some time to fully understand your application. But regardless, we would recommend that you enable DDoS Standard as early as possible. If you enable during an attack, you can engage DDoS Rapid Response for help.
For #2, the time it takes from detection to being under mitigation ranges from 30-90 seconds.
Hope this helps. Please let us know if you have any further questions and we will be glad to assist you further. Thank you!
Remember:
Please accept an answer if correct. Original posters help the community find answers faster by identifying the correct answer. Here is how.
Want a reminder to come back and check responses? Here is how to subscribe to a notification.