Configuring Alarm Threshold

Last updated: 2019-09-26 18:32:49

PDF

Application Scenarios

When attacks against your Anti-DDoS Pro resources start/end, and your Anti-DDoS Pro IPs are blocked/unblocked, you will get notifications via internal messages, SMSs, emails, or WeChat. Configuring proper alarm thresholds can help you know about the attack instantly. And this feature can also help prevent mis-alarming caused by normal business operations that bring traffic rush (for example, data synchronization). For more information about how you can receive the alarm messages, please refer to Security Event Notification Settings.

Configuring DDoS Attack Alarm Threshold

Scenario: When Anti-DDoS Pro detects that the inbound traffic bandwidth of the Single IP instance “bgp-0000064n” is over 1,000 Mbps, the system will send DDoS attack alarm message to the specific user group.

To set the attack alarm threshold, make sure you have enabled DDoS protection.

  1. Log in to the Anti-DDoS Console and choose Anti-DDoS Pro -> Resource List in the left sidebar to enter the Anti-DDoS Pro page. Click Single IP Instance to find the instance “bgp-0000064n”, and then click the operation item Protection Configuration in the line of the instance.
  2. Enter the Protection Policy page and locate to “DDoS Protection” section. Select the alarm metric Inbound Traffic Bandwidth in the drop-down list to the right of the DDoS attack alarm threshold, and set the threshold to 1,000 Mbps.

    The DDoS attack alarm threshold is Not Set by default. Available alarm metrics include Inbound Traffic Bandwidth and Cleansing Traffic.

Configuring CC Attack Alarm Threshold

Scenario: CC Protection is enabled for the Single IP instance “bgp-0000064n”. When the CC protection bandwidth exceeds 2,000 QPS, alarm messages will be sent to the specific user group.

To set the attack alarm threshold, make sure you have enabled CC protection.

  1. Log in to the Anti-DDoS Console and choose Anti-DDoS Pro -> Resource List in the left sidebar to enter the Anti-DDoS Pro page. Click Single IP Instance to find the instance “bgp-0000064n”, and then click Protection Configuration in the line of the instance.
  2. Click CC Protection and set the threshold to 2,000 QPS for the CC attack alarm threshold.