Skip to main content

DDOS Denfense Policy

This topic describes how to view and configure DDoS mitigation policies. Anti-DDoS provides default DDoS mitigation policies and DDoS traffic scrubbing policies

Context
After an alert threshold of DDoS traffic for an IP address is set, an alert is triggered when traffic to the IP address reaches the threshold. The alert threshold for an IP address must be specified based on the traffic volume. An excessively large traffic volume may indicate DDoS attacks. We recommend that you set an alert threshold to a value that is slightly higher than the peak traffic volume. Cloud supports a global alert threshold, alert threshold for a specific CIDR block and alert threshold for an IP address.

  • Global alert threshold: You cannot specify a global alert threshold. The threshold is automatically specified when Cloud Anti-DDoS product is activated.
  • Alert threshold for a CIDR block: You can specify an alert threshold for a CIDR block based on the traffic volume of the CIDR block. CIDR block-specific alert thresholds allow you to manage the traffic to each CIDR block.

Operation Steps

  • In the product management page, choose "Anti-DDoS".
  • In the left-side navigation pane, click "DDoS Defense Policy".
  • Or click "Anti-DDoS Policy" or "Anti-DDoS Interaction".
  • On the Anti-DDoS page, veiw and customise DDoS mitigation policies.
  • In the DDoS Scrubbing List section, view details about DDoS traffic scrubbing events.
  • To customize a policy for a CIDR block, perform the following steps.
  • In the Policy for DDoS Attack Traffic Scrubbing section, click View to view DDoS traffic scrubbing policies.