# Security and Bots

## Block requests from bad bots

Use a `robots.txt` file to block parts of your site you don’t want bots to access. But also monitor access from bots using your logs and other tooling. They’ll be using up precious computing resources by browsing your site. If you see lots of traffic coming from unknown and obvious bots, block them.

## DDoS protection

**Distributed Denial of Service (DDoS)** attacks range from annoying to planetary in terms of volume. They should be blocked as early up the chain as possible. Use services like **Cloudflare**, **Akamai**, **Azure Distributed Denial of Service** protection, and similar. Such services can blackhole these types of quests before they get anywhere near your application stack. If you don’t, they’ll be using up precious bandwidth and computation resources - all of which use energy.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.umbraco.com/sustainability-best-practices/infrastructure/security-and-bots.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.