文档首页/ DDoS防护 AAD/ API参考/ DDoS原生基础防护API/ DDoS防护管理/ 查询Anti-DDoS配置可选范围
更新时间:2024-11-13 GMT+08:00
在线调试
CLI示例
查看PDF
分享

查询Anti-DDoS配置可选范围

功能介绍

查询系统支持的Anti-DDoS防护策略配置的可选范围,用户根据范围列表选择适合自己业务的防护策略进行Anti-DDoS流量清洗。

调用方法

请参见如何调用API

URI

GET /v2/{project_id}/antiddos/query-config-list

表1 路径参数

参数

是否必选

参数类型

描述

project_id

String

项目id

最小长度:32

最大长度:64

请求参数

表2 请求Header参数

参数

是否必选

参数类型

描述

X-Auth-Token

String

用户Token。 通过调用IAM服务获取用户Token接口获取(响应消息头中X-Subject-Token的值)。

最小长度:32

最大长度:2097152

Content-Type

String

Content-Type请求头

缺省值:application/json;charset=utf8

最小长度:1

最大长度:255

响应参数

状态码: 200

表3 响应Body参数

参数

参数类型

描述

traffic_limited_list

Array of TriggerBpsDict objects

流量限制列表

http_limited_list

Array of TriggerQpsDict objects

HTTP限制列表

connection_limited_list

Array of CleanLimitDict objects

连接数限制列表

extend_ddos_config

Array of ExtendDDoSSet objects

扩展配置列表
表4 TriggerBpsDict

参数

参数类型

描述

traffic_pos_id

Long

流量分段ID,取值范围:1=10Mbps、2=30Mbps、3=50Mbps、4=70Mbps、5=100Mbps、6=150Mbps、7=200Mbps、8=250Mbps、9=300Mbps、10=500Mbps、11=800Mbps、88=1000Mbps、99=默认防护。

traffic_per_second

Long

每秒流量(Mbit/s)阈值

packet_per_second

Long

每秒报文数(个/s)阈值
表5 TriggerQpsDict

参数

参数类型

描述

http_request_pos_id

Long

HTTP请求数分段ID,固定值为1。

http_packet_per_second

Long

每秒HTTP请求数(个/s)阈值
表6 CleanLimitDict

参数

参数类型

描述

cleaning_access_pos_id

Long

清洗时访问限制分段ID,取值范围:1=10Mbps、2=30Mbps、3=50Mbps、4=70Mbps、5=100Mbps、6=150Mbps、7=200Mbps、8=250Mbps、9=300Mbps、10=500Mbps、11=800Mbps、88=1000Mbps、99=默认防护。

new_connection_limited

Long

单一源IP新建连接个数

total_connection_limited

Long

单一源IP连接数总个数
表7 ExtendDDoSSet

参数

参数类型

描述

SetID

Long

配置分段ID

new_connection_limited

Long

单一源IP新建连接个数

total_connection_limited

Long

单一源IP连接数总个数

http_packet_per_second

Long

每秒HTTP请求数(个/s)阈值

traffic_per_second

Long

每秒流量(Mbit/s)阈值

packet_per_second

Long

每秒报文数(个/s)阈值

请求示例

响应示例

状态码: 200

请求已成功

{
  "traffic_limited_list" : [ {
    "traffic_pos_id" : 1,
    "traffic_per_second" : 10,
    "packet_per_second" : 2000
  }, {
    "traffic_pos_id" : 2,
    "traffic_per_second" : 30,
    "packet_per_second" : 6000
  }, {
    "traffic_pos_id" : 3,
    "traffic_per_second" : 50,
    "packet_per_second" : 10000
  }, {
    "traffic_pos_id" : 4,
    "traffic_per_second" : 70,
    "packet_per_second" : 15000
  }, {
    "traffic_pos_id" : 5,
    "traffic_per_second" : 100,
    "packet_per_second" : 20000
  }, {
    "traffic_pos_id" : 6,
    "traffic_per_second" : 150,
    "packet_per_second" : 25000
  }, {
    "traffic_pos_id" : 7,
    "traffic_per_second" : 200,
    "packet_per_second" : 35000
  }, {
    "traffic_pos_id" : 8,
    "traffic_per_second" : 250,
    "packet_per_second" : 50000
  }, {
    "traffic_pos_id" : 9,
    "traffic_per_second" : 300,
    "packet_per_second" : 70000
  }, {
    "traffic_pos_id" : 88,
    "traffic_per_second" : 1000,
    "packet_per_second" : 300000
  } ],
  "http_limited_list" : [ {
    "http_request_pos_id" : 1,
    "http_packet_per_second" : 100
  }, {
    "http_request_pos_id" : 2,
    "http_packet_per_second" : 150
  }, {
    "http_request_pos_id" : 3,
    "http_packet_per_second" : 240
  }, {
    "http_request_pos_id" : 4,
    "http_packet_per_second" : 350
  }, {
    "http_request_pos_id" : 5,
    "http_packet_per_second" : 480
  }, {
    "http_request_pos_id" : 6,
    "http_packet_per_second" : 550
  }, {
    "http_request_pos_id" : 7,
    "http_packet_per_second" : 700
  }, {
    "http_request_pos_id" : 8,
    "http_packet_per_second" : 850
  }, {
    "http_request_pos_id" : 9,
    "http_packet_per_second" : 1000
  }, {
    "http_request_pos_id" : 10,
    "http_packet_per_second" : 1500
  }, {
    "http_request_pos_id" : 11,
    "http_packet_per_second" : 2000
  }, {
    "http_request_pos_id" : 12,
    "http_packet_per_second" : 3000
  }, {
    "http_request_pos_id" : 13,
    "http_packet_per_second" : 5000
  }, {
    "http_request_pos_id" : 14,
    "http_packet_per_second" : 10000
  }, {
    "http_request_pos_id" : 15,
    "http_packet_per_second" : 20000
  } ],
  "connection_limited_list" : [ {
    "cleaning_access_pos_id" : 1,
    "new_connection_limited" : 10,
    "total_connection_limited" : 30
  }, {
    "cleaning_access_pos_id" : 2,
    "new_connection_limited" : 20,
    "total_connection_limited" : 100
  }, {
    "cleaning_access_pos_id" : 3,
    "new_connection_limited" : 30,
    "total_connection_limited" : 200
  }, {
    "cleaning_access_pos_id" : 4,
    "new_connection_limited" : 40,
    "total_connection_limited" : 250
  }, {
    "cleaning_access_pos_id" : 5,
    "new_connection_limited" : 50,
    "total_connection_limited" : 300
  }, {
    "cleaning_access_pos_id" : 6,
    "new_connection_limited" : 60,
    "total_connection_limited" : 500
  }, {
    "cleaning_access_pos_id" : 7,
    "new_connection_limited" : 70,
    "total_connection_limited" : 600
  }, {
    "cleaning_access_pos_id" : 8,
    "new_connection_limited" : 80,
    "total_connection_limited" : 700
  } ],
  "extend_ddos_config" : [ ]
}

SDK代码示例

SDK代码示例如下。

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
 
package com.huaweicloud.sdk.test;

import com.huaweicloud.sdk.core.auth.ICredential;
import com.huaweicloud.sdk.core.auth.BasicCredentials;
import com.huaweicloud.sdk.core.exception.ConnectionException;
import com.huaweicloud.sdk.core.exception.RequestTimeoutException;
import com.huaweicloud.sdk.core.exception.ServiceResponseException;
import com.huaweicloud.sdk.antiddos.v1.region.AntiDDoSRegion;
import com.huaweicloud.sdk.antiddos.v1.*;
import com.huaweicloud.sdk.antiddos.v1.model.*;


public class ListNewConfigsSolution {

    public static void main(String[] args) {
        // The AK and SK used for authentication are hard-coded or stored in plaintext, which has great security risks. It is recommended that the AK and SK be stored in ciphertext in configuration files or environment variables and decrypted during use to ensure security.
        // In this example, AK and SK are stored in environment variables for authentication. Before running this example, set environment variables CLOUD_SDK_AK and CLOUD_SDK_SK in the local environment
        String ak = System.getenv("CLOUD_SDK_AK");
        String sk = System.getenv("CLOUD_SDK_SK");

        ICredential auth = new BasicCredentials()
                .withAk(ak)
                .withSk(sk);

        AntiDDoSClient client = AntiDDoSClient.newBuilder()
                .withCredential(auth)
                .withRegion(AntiDDoSRegion.valueOf("cn-north-4"))
                .build();
        ListNewConfigsRequest request = new ListNewConfigsRequest();
        try {
            ListNewConfigsResponse response = client.listNewConfigs(request);
            System.out.println(response.toString());
        } catch (ConnectionException e) {
            e.printStackTrace();
        } catch (RequestTimeoutException e) {
            e.printStackTrace();
        } catch (ServiceResponseException e) {
            e.printStackTrace();
            System.out.println(e.getHttpStatusCode());
            System.out.println(e.getRequestId());
            System.out.println(e.getErrorCode());
            System.out.println(e.getErrorMsg());
        }
    }
}

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
 
# coding: utf-8

from huaweicloudsdkcore.auth.credentials import BasicCredentials
from huaweicloudsdkantiddos.v1.region.antiddos_region import AntiDDoSRegion
from huaweicloudsdkcore.exceptions import exceptions
from huaweicloudsdkantiddos.v1 import *

if __name__ == "__main__":
    # The AK and SK used for authentication are hard-coded or stored in plaintext, which has great security risks. It is recommended that the AK and SK be stored in ciphertext in configuration files or environment variables and decrypted during use to ensure security.
    # In this example, AK and SK are stored in environment variables for authentication. Before running this example, set environment variables CLOUD_SDK_AK and CLOUD_SDK_SK in the local environment
    ak = os.getenv("CLOUD_SDK_AK")
    sk = os.getenv("CLOUD_SDK_SK")

    credentials = BasicCredentials(ak, sk) \

    client = AntiDDoSClient.new_builder() \
        .with_credentials(credentials) \
        .with_region(AntiDDoSRegion.value_of("cn-north-4")) \
        .build()

    try:
        request = ListNewConfigsRequest()
        response = client.list_new_configs(request)
        print(response)
    except exceptions.ClientRequestException as e:
        print(e.status_code)
        print(e.request_id)
        print(e.error_code)
        print(e.error_msg)

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
 
package main

import (
	"fmt"
	"github.com/huaweicloud/huaweicloud-sdk-go-v3/core/auth/basic"
    antiddos "github.com/huaweicloud/huaweicloud-sdk-go-v3/services/antiddos/v1"
	"github.com/huaweicloud/huaweicloud-sdk-go-v3/services/antiddos/v1/model"
    region "github.com/huaweicloud/huaweicloud-sdk-go-v3/services/antiddos/v1/region"
)

func main() {
    // The AK and SK used for authentication are hard-coded or stored in plaintext, which has great security risks. It is recommended that the AK and SK be stored in ciphertext in configuration files or environment variables and decrypted during use to ensure security.
    // In this example, AK and SK are stored in environment variables for authentication. Before running this example, set environment variables CLOUD_SDK_AK and CLOUD_SDK_SK in the local environment
    ak := os.Getenv("CLOUD_SDK_AK")
    sk := os.Getenv("CLOUD_SDK_SK")

    auth := basic.NewCredentialsBuilder().
        WithAk(ak).
        WithSk(sk).
        Build()

    client := antiddos.NewAntiDDoSClient(
        antiddos.AntiDDoSClientBuilder().
            WithRegion(region.ValueOf("cn-north-4")).
            WithCredential(auth).
            Build())

    request := &model.ListNewConfigsRequest{}
	response, err := client.ListNewConfigs(request)
	if err == nil {
        fmt.Printf("%+v\n", response)
    } else {
        fmt.Println(err)
    }
}

更多编程语言的SDK代码示例,请参见API Explorer的代码示例页签,可生成自动对应的SDK代码示例。

状态码

状态码

描述

200

请求已成功

错误码

请参见错误码

父主题: DDoS防护管理

相关文档