Anti-DDoS supports precise protection for connected web applications. With the precise protection, you can configure protection policies combining multiple conditions of common HTTP fields, such as URI, UA, Cookie, Referer, and Accept to screen access requests. For the requests matched the conditions, you can configure CAPTCHA to verify the requesters or a policy to automatically drop or allow the requests. Precise protection is available for policy customization in various use cases to precisely defend against CC attacks.
The match conditions define the request characteristics to be checked, i.e., the attribute characteristics of the HTTP field in a request. Precise protection supports checking the HTTP fields below:
|Match Field||Field Description||Logic|
|URI||The URI of an access request.||Equals to, includes, or does not include.|
|UA||The identifier and other information of the client browser that initiates an access request.||Equals to, includes, or does not include.|
|Cookie||The cookie information in an access request.||Equals to, includes, or does not include.|
|Referer||The source website of an access request, from which the access request is redirected.||Equals to, includes, or does not include.|
|Accept||The data type to be received by the client that initiates the access request.||Equals to, includes, or does not include.|
|Method||Request methods, such as HEAD, GET, POST, DELETE, and PUT.||Equals to, includes, or does not include.|
You have purchased an Anti-DDoS Advanced instance and set the object to protect.