Protocol Blocking

Last updated: 2021-07-12 22:55:37

Anti-DDoS supports blocking the source traffic accessing Anti-DDoS instances based on specified protocols, such as ICMP, TCP, UDP, and other protocols. After the configuration is completed, all matched access requests will be directly blocked. Due to the connectionless feature of UDP protocol (unlike TCP, which requires a three-way handshake process), it has natural security vulnerabilities. If you do not have UDP businesses, we recommend blocking the UDP protocol.

Prerequisites

You have purchased an [Anti-DDoS Advanced (Global Enterprise Edition)] instance and set your target to protect.

Directions

  1. Log in to the Anti-DDoS Advanced (Global Enterprise Edition) Console and select Anti-DDoS Advanced -> Configurations on the left sidebar.

  2. Select an Anti-DDoS Advanced instance ID in the list on the left, such as "xxx.xx.xx.xx bgpip-000003n2".

  3. Click Set in the Block by Protocol block on the right.

  4. Click Create.

  5. In the pop-up window, fill in the configuration fields and click OK.

  6. Now the new protocol blocking rule is added to the list, and you can click Configuration to modify it.