Updated on 2025-02-08 GMT+08:00

Blocking Traffic of a Specified Protocol

After protocol blocking is enabled, the system limits the rate of traffic destined for Anti-DDoS Service objects based on the protocol type. This feature supports protocols such as UDP, TCP, and ICMP.

For details about the rate limit thresholds for different protocols, see Table 1.

Table 1 Rate Limit (pps)

Protocol Type

Rate Limit (pps)

UDP

10Mbps

TCP

10Mbps

ICMP

100pps

Other (other protocols)

10Mbps

Enabling Protocol Blocking

  1. Log in to the management console.
  2. Select a region in the upper part of the page, click in the upper left corner of the page, and choose Security & Compliance > Anti-DDoS Service. The Anti-DDoS Service Center page is displayed.
  3. In the navigation pane on the left, choose Cloud Native Anti-DDoS Advanced > Protection Policies. The Protection Policies page is displayed.
  4. Click Create Protection Policy.
  5. In the displayed dialog box, set the policy name, select an instance, and click OK.

    Figure 1 Creating a policy

  6. In the row containing the target policy, click Set Protection Policy in the Operation column.
  7. In the Protocol-based Traffic Control area, click Set.

    Figure 2 Protocol-based Traffic Control

  8. In the displayed Set Protocol for Traffic Control dialog box, enable or disable traffic control, and click OK.

    Figure 3 Setting protocol blocking
    • indicates that traffic of the protocol type is blocked.
    • indicates that traffic of the protocol type is allowed.