文档首页/ DDoS防护 AAD/ API参考/ DDoS原生基础防护API/ DDoS防护管理/ 更新Anti-DDoS服务
更新时间:2024-11-13 GMT+08:00
在线调试
CLI示例
查看PDF
分享

更新Anti-DDoS服务

功能介绍

更新指定EIP的Anti-DDoS防护策略配置。调用成功,只是说明服务节点收到了关闭更新配置请求,操作是否成功需要通过任务查询接口查询该任务的执行状态,具体请参考查询Anti-DDoS任务。

调用方法

请参见如何调用API

URI

PUT /v1/{project_id}/antiddos/{floating_ip_id}

表1 路径参数

参数

是否必选

参数类型

描述

project_id

String

项目id

最小长度:32

最大长度:64

floating_ip_id

String

用户EIP对应的ID
表2 Query参数

参数

是否必选

参数类型

描述

ip

String

ip

请求参数

表3 请求Header参数

参数

是否必选

参数类型

描述

X-Auth-Token

String

用户Token。 通过调用IAM服务获取用户Token接口获取(响应消息头中X-Subject-Token的值)。

最小长度:32

最大长度:2097152

Content-Type

String

Content-Type请求头

缺省值:application/json;charset=utf8

最小长度:1

最大长度:255
表4 请求Body参数

参数

是否必选

参数类型

描述

app_type_id

Integer

应用类型ID,固定值为0。

cleaning_access_pos_id

Integer

清洗时访问限制分段ID,取值范围:1=10Mbps、2=30Mbps、3=50Mbps、4=70Mbps、5=100Mbps、6=150Mbps、7=200Mbps、8=250Mbps、9=300Mbps、10=500Mbps、11=800Mbps、88=1000Mbps、99=默认防护。

enable_L7

Boolean

是否开启L7层防护,固定值为fasle。

http_request_pos_id

Integer

HTTP请求数分段ID,固定值为1。

traffic_pos_id

Integer

流量分段ID,取值范围:1=10Mbps、2=30Mbps、3=50Mbps、4=70Mbps、5=100Mbps、6=150Mbps、7=200Mbps、8=250Mbps、9=300Mbps、10=500Mbps、11=800Mbps、88=1000Mbps、99=默认防护。

响应参数

状态码: 200

表5 响应Body参数

参数

参数类型

描述

error_code

String

内部错误码

最小长度:1

最大长度:20

error_msg

String

内部错误描述

最小长度:1

最大长度:255

task_id

String

任务ID,后续可根据该ID查询本任务状态。 本字段为后续的任务审计扩展,暂时不需要,先保留。

请求示例

更新指定EIP的Anti-DDoS防护策略,清洗时访问限制分段ID设置为8,流量分段ID设置为1。

PUT https://{endpoint}/v1/{project_id}/antiddos/{floating_ip_id}

{
  "app_type_id" : 0,
  "cleaning_access_pos_id" : 8,
  "enable_L7" : false,
  "http_request_pos_id" : 1,
  "traffic_pos_id" : 1
}

响应示例

状态码: 200

请求已成功

{
  "error_code" : "10000000",
  "error_msg" : "The task has been received and is being handled",
  "task_id" : "59385d2a-6266-4d3a-9122-a228c530f557"
}

SDK代码示例

SDK代码示例如下。

更新指定EIP的Anti-DDoS防护策略,清洗时访问限制分段ID设置为8,流量分段ID设置为1。

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
 
package com.huaweicloud.sdk.test;

import com.huaweicloud.sdk.core.auth.ICredential;
import com.huaweicloud.sdk.core.auth.BasicCredentials;
import com.huaweicloud.sdk.core.exception.ConnectionException;
import com.huaweicloud.sdk.core.exception.RequestTimeoutException;
import com.huaweicloud.sdk.core.exception.ServiceResponseException;
import com.huaweicloud.sdk.antiddos.v1.region.AntiDDoSRegion;
import com.huaweicloud.sdk.antiddos.v1.*;
import com.huaweicloud.sdk.antiddos.v1.model.*;


public class UpdateDDosSolution {

    public static void main(String[] args) {
        // The AK and SK used for authentication are hard-coded or stored in plaintext, which has great security risks. It is recommended that the AK and SK be stored in ciphertext in configuration files or environment variables and decrypted during use to ensure security.
        // In this example, AK and SK are stored in environment variables for authentication. Before running this example, set environment variables CLOUD_SDK_AK and CLOUD_SDK_SK in the local environment
        String ak = System.getenv("CLOUD_SDK_AK");
        String sk = System.getenv("CLOUD_SDK_SK");

        ICredential auth = new BasicCredentials()
                .withAk(ak)
                .withSk(sk);

        AntiDDoSClient client = AntiDDoSClient.newBuilder()
                .withCredential(auth)
                .withRegion(AntiDDoSRegion.valueOf("cn-north-4"))
                .build();
        UpdateDDosRequest request = new UpdateDDosRequest();
        request.withIp("<ip>");
        UpdateAntiDDosServiceRequestBody body = new UpdateAntiDDosServiceRequestBody();
        body.withTrafficPosId(1);
        body.withHttpRequestPosId(1);
        body.withEnableL7(false);
        body.withCleaningAccessPosId(8);
        body.withAppTypeId(0);
        request.withBody(body);
        try {
            UpdateDDosResponse response = client.updateDDos(request);
            System.out.println(response.toString());
        } catch (ConnectionException e) {
            e.printStackTrace();
        } catch (RequestTimeoutException e) {
            e.printStackTrace();
        } catch (ServiceResponseException e) {
            e.printStackTrace();
            System.out.println(e.getHttpStatusCode());
            System.out.println(e.getRequestId());
            System.out.println(e.getErrorCode());
            System.out.println(e.getErrorMsg());
        }
    }
}

更新指定EIP的Anti-DDoS防护策略,清洗时访问限制分段ID设置为8,流量分段ID设置为1。

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
 
# coding: utf-8

from huaweicloudsdkcore.auth.credentials import BasicCredentials
from huaweicloudsdkantiddos.v1.region.antiddos_region import AntiDDoSRegion
from huaweicloudsdkcore.exceptions import exceptions
from huaweicloudsdkantiddos.v1 import *

if __name__ == "__main__":
    # The AK and SK used for authentication are hard-coded or stored in plaintext, which has great security risks. It is recommended that the AK and SK be stored in ciphertext in configuration files or environment variables and decrypted during use to ensure security.
    # In this example, AK and SK are stored in environment variables for authentication. Before running this example, set environment variables CLOUD_SDK_AK and CLOUD_SDK_SK in the local environment
    ak = os.getenv("CLOUD_SDK_AK")
    sk = os.getenv("CLOUD_SDK_SK")

    credentials = BasicCredentials(ak, sk) \

    client = AntiDDoSClient.new_builder() \
        .with_credentials(credentials) \
        .with_region(AntiDDoSRegion.value_of("cn-north-4")) \
        .build()

    try:
        request = UpdateDDosRequest()
        request.ip = "<ip>"
        request.body = UpdateAntiDDosServiceRequestBody(
            traffic_pos_id=1,
            http_request_pos_id=1,
            enable_l7=False,
            cleaning_access_pos_id=8,
            app_type_id=0
        )
        response = client.update_d_dos(request)
        print(response)
    except exceptions.ClientRequestException as e:
        print(e.status_code)
        print(e.request_id)
        print(e.error_code)
        print(e.error_msg)

更新指定EIP的Anti-DDoS防护策略,清洗时访问限制分段ID设置为8,流量分段ID设置为1。

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
 
package main

import (
	"fmt"
	"github.com/huaweicloud/huaweicloud-sdk-go-v3/core/auth/basic"
    antiddos "github.com/huaweicloud/huaweicloud-sdk-go-v3/services/antiddos/v1"
	"github.com/huaweicloud/huaweicloud-sdk-go-v3/services/antiddos/v1/model"
    region "github.com/huaweicloud/huaweicloud-sdk-go-v3/services/antiddos/v1/region"
)

func main() {
    // The AK and SK used for authentication are hard-coded or stored in plaintext, which has great security risks. It is recommended that the AK and SK be stored in ciphertext in configuration files or environment variables and decrypted during use to ensure security.
    // In this example, AK and SK are stored in environment variables for authentication. Before running this example, set environment variables CLOUD_SDK_AK and CLOUD_SDK_SK in the local environment
    ak := os.Getenv("CLOUD_SDK_AK")
    sk := os.Getenv("CLOUD_SDK_SK")

    auth := basic.NewCredentialsBuilder().
        WithAk(ak).
        WithSk(sk).
        Build()

    client := antiddos.NewAntiDDoSClient(
        antiddos.AntiDDoSClientBuilder().
            WithRegion(region.ValueOf("cn-north-4")).
            WithCredential(auth).
            Build())

    request := &model.UpdateDDosRequest{}
	ipRequest:= "<ip>"
	request.Ip = &ipRequest
	request.Body = &model.UpdateAntiDDosServiceRequestBody{
		TrafficPosId: int32(1),
		HttpRequestPosId: int32(1),
		EnableL7: false,
		CleaningAccessPosId: int32(8),
		AppTypeId: int32(0),
	}
	response, err := client.UpdateDDos(request)
	if err == nil {
        fmt.Printf("%+v\n", response)
    } else {
        fmt.Println(err)
    }
}

更多编程语言的SDK代码示例,请参见API Explorer的代码示例页签,可生成自动对应的SDK代码示例。

状态码

状态码

描述

200

请求已成功

错误码

请参见错误码

父主题: DDoS防护管理

相关文档