Function
This section describes the main functions supported by CNAD Advanced. For detailed information on region availability of each feature, you can refer to the console.
Traffic Scrubbing
After your service is connected to CNAD Advanced, you can set basic protection policies for the protected objects. If the DDoS bandwidth on an IP address exceeds the configured threshold, CNAD Advanced is triggered to scrub attack traffic to ensure service availability. For more information, see Configuring a Basic Protection Policy to Intercept Attack Traffic.
Blacklist and Whitelist
You can configure an access control list to control access to your IP addresses. For more information, see Blocking or Permitting Traffic from Specified IP Addresses Using a Blacklist and Whitelist.
Port Blocking
If a destination port is unnecessary for access, you can set up a port blocking policy to block traffic from reaching the port, thereby minimizing DDoS attack risks. For more information, see Blocking Traffic to a Specified Port.
Protocol-based Blocking
After protocol blocking is enabled, the system limits the rate of traffic destined for Anti-DDoS Service objects based on the protocol type. This feature supports protocols such as UDP, TCP, and ICMP. For more information, see Limiting Traffic to a Specified Protocol.
Fingerprint Filtering
You can configure a fingerprint filtering rule to match the content of a specified location in a data packet. You can set actions for matched traffic, such as discarding, allowing, and rate limiting. For more information, see Setting a Traffic Handling Policy Based on Fingerprint Features.
Advanced Protection
If an origin server IP address frequently sends a high volume of abnormal connection packets within a short period, you can set up an advanced protection policy to add the IP address to the blacklist. Access it once the block period ends. For more information, see Using Advanced Protection Policies to Restrict Abnormal Connections.
Region Blacklist
CNAD Advanced allows you to configure a policy to block traffic outside China. After the policy takes effect, access traffic from outside China will be discarded. For more information, see Blocking Traffic to a Specified Port.
Configuring Attack Filtering
CNAD Advanced offers common UDP reflection and other common filtering rules. You can enable rate limiting rules with just a few clicks. For more information, see Filtering Attacks Based on One-Click Rate Limiting Rules.
Alarm Notification
After you enable alarm notifications, a notification message will be sent to you (through the method you have configured) when an IP address is under DDoS attacks. For more information, see Enabling Alarm Notifications for DDoS Attacks.
Attack Logs
After you authorize CNAD Advanced to access Log Tank Service (LTS), you can use the attack logs recorded by LTS for quick and efficient real-time analysis, device O&M management, and analysis of service trends. For more information, see Enabling Logging.
Data Report
CNAD Advanced provides comprehensive reporting capabilities, allowing you to view data from both instance and protected object dimensions. These reports include traffic statistics, attack trends, and security events, offering valuable insights into the current network security posture. For more information, see Viewing Statistics Reports.
Event Monitoring
Cloud Eye enables event monitoring for protected EIPs and generates alarms for scrubbing, blocking, and unblocking events. This helps you learn about the protection status of CNAD Advanced in a timely manner. For more information, see Setting Event Alarm Notifications.
Audit Logs
After CTS is enabled, you can view historical operations recorded by CTS. For more information, see Viewing CTS Traces.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
