文档首页/ DDoS防护 AAD/ API参考/ DDoS原生基础防护API/ 默认防护策略管理/ 配置Anti-DDoS默认防护策略
更新时间:2024-11-13 GMT+08:00
在线调试
CLI示例
查看PDF
分享

配置Anti-DDoS默认防护策略

功能介绍

配置用户的默认防护策略。配置防护策略后,新购买的资源在自动开启防护时,会按照该默认防护策略进行配置。

调用方法

请参见如何调用API

URI

POST /v1/{project_id}/antiddos/default-config

表1 路径参数

参数

是否必选

参数类型

描述

project_id

String

项目id

最小长度:32

最大长度:64

请求参数

表2 请求Header参数

参数

是否必选

参数类型

描述

X-Auth-Token

String

用户Token。 通过调用IAM服务获取用户Token接口获取(响应消息头中X-Subject-Token的值)。

最小长度:32

最大长度:2097152

Content-Type

String

Content-Type请求头

缺省值:application/json;charset=utf8

最小长度:1

最大长度:255
表3 请求Body参数

参数

是否必选

参数类型

描述

enable_L7

Boolean

是否开启L7层防护,固定值为fasle。

traffic_pos_id

Long

流量分段ID,取值范围:1=10Mbps、2=30Mbps、3=50Mbps、4=70Mbps、5=100Mbps、6=150Mbps、7=200Mbps、8=250Mbps、9=300Mbps、10=500Mbps、11=800Mbps、88=1000Mbps、99=默认防护。

http_request_pos_id

Long

HTTP请求数分段ID,固定值为1。

cleaning_access_pos_id

Long

清洗时访问限制分段ID,取值范围:1=10Mbps、2=30Mbps、3=50Mbps、4=70Mbps、5=100Mbps、6=150Mbps、7=200Mbps、8=250Mbps、9=300Mbps、10=500Mbps、11=800Mbps、88=1000Mbps、99=默认防护。

app_type_id

Integer

应用类型ID,固定值为0。

响应参数

状态码: 200

表4 响应Body参数

参数

参数类型

描述

error_code

String

内部错误码

最小长度:1

最大长度:20

error_msg

String

内部错误描述

最小长度:1

最大长度:255

请求示例

配置用户默认的防护策略,清洗时访问限制分段ID设置为8,流量分段ID设置为1。

POST https://{endpoint}/v1/{project_id}/antiddos/default-config

{
  "app_type_id" : 0,
  "cleaning_access_pos_id" : 8,
  "enable_L7" : false,
  "http_request_pos_id" : 1,
  "traffic_pos_id" : 1
}

响应示例

状态码: 200

请求已成功

{
  "error_code" : "10000000",
  "error_msg" : "Ok",
  "task_id" : ""
}

SDK代码示例

SDK代码示例如下。

配置用户默认的防护策略,清洗时访问限制分段ID设置为8,流量分段ID设置为1。

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
 
package com.huaweicloud.sdk.test;

import com.huaweicloud.sdk.core.auth.ICredential;
import com.huaweicloud.sdk.core.auth.BasicCredentials;
import com.huaweicloud.sdk.core.exception.ConnectionException;
import com.huaweicloud.sdk.core.exception.RequestTimeoutException;
import com.huaweicloud.sdk.core.exception.ServiceResponseException;
import com.huaweicloud.sdk.antiddos.v1.region.AntiDDoSRegion;
import com.huaweicloud.sdk.antiddos.v1.*;
import com.huaweicloud.sdk.antiddos.v1.model.*;


public class CreateDefaultConfigSolution {

    public static void main(String[] args) {
        // The AK and SK used for authentication are hard-coded or stored in plaintext, which has great security risks. It is recommended that the AK and SK be stored in ciphertext in configuration files or environment variables and decrypted during use to ensure security.
        // In this example, AK and SK are stored in environment variables for authentication. Before running this example, set environment variables CLOUD_SDK_AK and CLOUD_SDK_SK in the local environment
        String ak = System.getenv("CLOUD_SDK_AK");
        String sk = System.getenv("CLOUD_SDK_SK");

        ICredential auth = new BasicCredentials()
                .withAk(ak)
                .withSk(sk);

        AntiDDoSClient client = AntiDDoSClient.newBuilder()
                .withCredential(auth)
                .withRegion(AntiDDoSRegion.valueOf("cn-north-4"))
                .build();
        CreateDefaultConfigRequest request = new CreateDefaultConfigRequest();
        DdosConfig body = new DdosConfig();
        body.withAppTypeId(0L);
        body.withCleaningAccessPosId(8L);
        body.withHttpRequestPosId(1L);
        body.withTrafficPosId(1L);
        body.withEnableL7(false);
        request.withBody(body);
        try {
            CreateDefaultConfigResponse response = client.createDefaultConfig(request);
            System.out.println(response.toString());
        } catch (ConnectionException e) {
            e.printStackTrace();
        } catch (RequestTimeoutException e) {
            e.printStackTrace();
        } catch (ServiceResponseException e) {
            e.printStackTrace();
            System.out.println(e.getHttpStatusCode());
            System.out.println(e.getRequestId());
            System.out.println(e.getErrorCode());
            System.out.println(e.getErrorMsg());
        }
    }
}

配置用户默认的防护策略,清洗时访问限制分段ID设置为8,流量分段ID设置为1。

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
 
# coding: utf-8

from huaweicloudsdkcore.auth.credentials import BasicCredentials
from huaweicloudsdkantiddos.v1.region.antiddos_region import AntiDDoSRegion
from huaweicloudsdkcore.exceptions import exceptions
from huaweicloudsdkantiddos.v1 import *

if __name__ == "__main__":
    # The AK and SK used for authentication are hard-coded or stored in plaintext, which has great security risks. It is recommended that the AK and SK be stored in ciphertext in configuration files or environment variables and decrypted during use to ensure security.
    # In this example, AK and SK are stored in environment variables for authentication. Before running this example, set environment variables CLOUD_SDK_AK and CLOUD_SDK_SK in the local environment
    ak = os.getenv("CLOUD_SDK_AK")
    sk = os.getenv("CLOUD_SDK_SK")

    credentials = BasicCredentials(ak, sk) \

    client = AntiDDoSClient.new_builder() \
        .with_credentials(credentials) \
        .with_region(AntiDDoSRegion.value_of("cn-north-4")) \
        .build()

    try:
        request = CreateDefaultConfigRequest()
        request.body = DdosConfig(
            app_type_id=0,
            cleaning_access_pos_id=8,
            http_request_pos_id=1,
            traffic_pos_id=1,
            enable_l7=False
        )
        response = client.create_default_config(request)
        print(response)
    except exceptions.ClientRequestException as e:
        print(e.status_code)
        print(e.request_id)
        print(e.error_code)
        print(e.error_msg)

配置用户默认的防护策略,清洗时访问限制分段ID设置为8,流量分段ID设置为1。

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
 
package main

import (
	"fmt"
	"github.com/huaweicloud/huaweicloud-sdk-go-v3/core/auth/basic"
    antiddos "github.com/huaweicloud/huaweicloud-sdk-go-v3/services/antiddos/v1"
	"github.com/huaweicloud/huaweicloud-sdk-go-v3/services/antiddos/v1/model"
    region "github.com/huaweicloud/huaweicloud-sdk-go-v3/services/antiddos/v1/region"
)

func main() {
    // The AK and SK used for authentication are hard-coded or stored in plaintext, which has great security risks. It is recommended that the AK and SK be stored in ciphertext in configuration files or environment variables and decrypted during use to ensure security.
    // In this example, AK and SK are stored in environment variables for authentication. Before running this example, set environment variables CLOUD_SDK_AK and CLOUD_SDK_SK in the local environment
    ak := os.Getenv("CLOUD_SDK_AK")
    sk := os.Getenv("CLOUD_SDK_SK")

    auth := basic.NewCredentialsBuilder().
        WithAk(ak).
        WithSk(sk).
        Build()

    client := antiddos.NewAntiDDoSClient(
        antiddos.AntiDDoSClientBuilder().
            WithRegion(region.ValueOf("cn-north-4")).
            WithCredential(auth).
            Build())

    request := &model.CreateDefaultConfigRequest{}
	request.Body = &model.DdosConfig{
		AppTypeId: int64(0),
		CleaningAccessPosId: int64(8),
		HttpRequestPosId: int64(1),
		TrafficPosId: int64(1),
		EnableL7: false,
	}
	response, err := client.CreateDefaultConfig(request)
	if err == nil {
        fmt.Printf("%+v\n", response)
    } else {
        fmt.Println(err)
    }
}

更多编程语言的SDK代码示例,请参见API Explorer的代码示例页签,可生成自动对应的SDK代码示例。

状态码

状态码

描述

200

请求已成功

错误码

请参见错误码

父主题: 默认防护策略管理

相关文档