Secure API Manager contains built-in denial-of-service attack protection. When an API Gateway is being probed, scanned, or attacked over HTTP or SSH (if enabled), the API Gateway begins to deny TCP connections from the attacker's IP address for a period. The built-in denial-of-service attack protection disrupts the attack and provides time for the infrastructure to recover and for administrators to implement other mitigations.