Help Center/ Elastic IP/ Drawer/ Buying an EIP/ Cloud Native Anti-DDoS Basic
Updated on 2025-08-13 GMT+08:00

Cloud Native Anti-DDoS Basic

Description

Cloud Native Anti-DDoS Basic (Anti-DDoS) monitors the service traffic from the Internet to EIPs to detect malicious traffic in real time. It then scrubs traffic based on user-configured defense policies without interrupting services. It also generates monitoring reports that provide visibility into network security.

  • Anti-DDoS helps you defend against the following attacks:
    • Web server attacks

      SYN flood, HTTP flood, Challenge Collapsar (CC), and low-rate attacks

    • Game attacks

      User Datagram Protocol (UDP) flood, SYN flood, TCP-based, and fragmentation attacks

    • HTTPS server attacks

      SSL DoS and DDoS attacks

  • Anti-DDoS also:
    • Monitors the security status of a single EIP and produces a monitoring report, covering the current protection status, protection settings, and the traffic and anomalies within the last 24 hours.
    • Provides attack statistics reports on all protected EIPs, covering the traffic scrubbing frequency, scrubbed traffic amount, top 10 attacked EIPs, and number of blocked attacks.
  • You can configure an Anti-DDoS defense policy in either of the following ways:
    • Use the default protection policy.

      The default protection policy is an initial policy and takes effect for all newly purchased EIPs. The default traffic scrubbing threshold is 120 Mbit/s and can be modified.

    • Manually set a protection policy.

      You can manually set protection policies for your EIPs in batches or one by one. The default protection policy will no longer be used for EIPs for which protection policies have been manually configured.

FAQ