Limitations and Constraints

Protected Objects

Protection Quotas

• CNAD Advanced
  • Standard Edition: Each instance can protect one EIP up to 10 times, supports IP address changes up to 5 times, and provides a service bandwidth of 100 Mbit/s.
  • Unlimited Protection Basic Edition: Each instance can protect up to 500 dynamic BGP EIPs, with a maximum service bandwidth of 20,000 Mbit/s.
  • Unlimited Protection Advanced Edition: Each instance can protect up to 500 Anti-DDoS Service dedicated EIPs, with a maximum service bandwidth of 10,000 Mbit/s.
  • CNAD 2.0 in the Chinese mainland: Each instance can protect up to 1000 EIPs with a maximum service bandwidth of 20,000 Mbit/s (pay-per-use billing supported). CNAD 2.0 in other regions: Each instance can protect up to 500 EIPs.
• AAD
  • Chinese mainland: Each instance can protect up to 500 domain names, with 2,000 Mbit/s service bandwidth and 1,000 Gbit/s protection bandwidth. For IP access, each instance supports up to 500 forwarding rules, 1,000 Gbit/s protection bandwidth, and 2,000 Mbit/s service bandwidth.
  • Other regions: Each instance can protect up to 200 domain names, with a maximum of 2,000 Mbit/s service bandwidth. For IP access, each instance supports up to 200 forwarding rules with a maximum of 2,000 Mbit/s service bandwidth.
• Anti-DDoS scheduling center: Each scheduling rule supports scheduling for up to 10 IP addresses, with each user supporting a maximum of 500 scheduling rules.

Domain Name Access

• ICP filing must be conducted on the domain names to be connected to AAD.
• A maximum of 20 origin server IP addresses or one origin server domain name (for example, www.domain.com) is supported. A wildcard domain name can be *.domain.com.