Function
This section describes the main functions supported by Advanced Anti-DDoS. For detailed information on region availability of each feature, you can refer to the console.
Blacklist and Whitelist
You can configure an IP address blacklist or whitelist to block or allow access requests from specified IP addresses. For more information, see Blocking or Permitting Traffic from Specified IP Addresses Using a Blacklist and Whitelist.
Region Blacklist
Advanced Anti-DDoS can block traffic in a specified region. Once the policy is in effect, access traffic from the designated region will be discarded. For more information, see Blocking Traffic From Specified Locations.
Protocol-based Blocking
Advanced Anti-DDoS offers a one-click mode to block traffic based on protocol type. If there is no UDP service, you are advised to disable the UDP protocol. Once the UDP protocol blocking is enabled, the rate of UDP access traffic will be restricted if it exceeds 2 Mbit/s. For more information, see Blocking Traffic of a Specified Protocol.
Frequency Control Rules
You can set frequency control rules to limit the access frequency of a single IP address, cookie, or referer to the origin server of a protected website. You can also enable policy-based, domain name, and URL rate limiting to identify and mitigate CC attacks. For more information, see Mitigating CC Attacks Using Frequency Control Policies.
Intelligent CC
If you enable intelligent CC attack protection, Advanced Anti-DDoS uses built-in AI-powered models to analyze traffic to your website, identify CC attacks and abnormal features in HTTP requests on the origin server, and generate specific precise protection and access control rules for your website. In this way, Advanced Anti-DDoS can then automatically protect your website from CC attacks. For more information, see Using Intelligent CC Policies to Defend Against CC Attacks.
Alarm Notification
After you enable alarm notifications, a notification message will be sent to you (through the method you have configured) when an IP address is under DDoS attacks or elastic billing is triggered. For more information, see Enabling Alarm Notifications for DDoS Attacks.
Attack Logs
After you authorize Advanced Anti-DDoS to access Log Tank Service (LTS), you can use the logs recorded by LTS for quick and efficient real-time analysis, device O&M management, and analysis of service trends. For more information, see Enabling Logging.
Data Report
After your services are connected to Advanced Anti-DDoS, you can view the DDoS and CC attack protection reports to learn about the network security status of your services. For more information, see Viewing Statistics.
Event Monitoring
Cloud Eye can monitor Advanced Anti-DDoS events and generate alarms when events such as black hole, scheduling, and attacks occur. It helps you learn about the protection status of Advanced Anti-DDoS in a timely manner. For more information, see Setting Event Alarm Notifications.
Audit Logs
After you enable CTS, the system starts recording operations on Anti-DDoS Service. You can view the operation records of the last 7 days on the CTS console. For more information, see Viewing CTS Traces.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot
