边缘安全
  • 概述
  • DDoS 防护
    • DDoS 防护概述
    • 使用独立 DDoS 防护
    • 配置独立 DDoS 防护策略
      • 调整 DDoS 防护等级
      • 独立 DDoS 攻击流量告警
      • 配置 IP 黑白名单
      • 配置区域封禁
      • 配置端口过滤
      • 配置特征过滤
      • 配置协议封禁
      • 配置连接类攻击防护
      • 相关参考
        • 处置方式
        • 相关概念介绍
  • Web 防护
    • 概述
    • 配置Web防护策略
    • 托管规则
    • CC 攻击防护
    • 带宽滥用防护
    • 自定义规则
    • 自定义速率限制规则
    • 防护例外规则
    • 托管定制规则
    • Web 安全监控告警
    • 相关参考
      • Web 防护请求处理顺序
      • 处置方式
      • 匹配条件
  • Bot 管理
    • 概述
    • Bot 智能分析
    • Bot 基础特征管理
    • 客户端画像分析
    • 主动特征识别
    • 自定义 Bot 规则
    • Bot 管理例外规则
    • 相关参考
      • 处置方式
  • 策略模板
  • IP 和网段分组
  • 源站防护
  • 自定义响应页面
  • 告警通知推送
  • SSL/TLS
    • 概述
    • 部署/更新 SSL 托管证书至 EdgeOne 域名
    • 使用免费证书部署至 EdgeOne 域名
    • 双向认证
    • HTTPS 配置
      • 强制 HTTPS 访问
      • 启用 HSTS
      • SSL/TLS 安全配置
        • 配置 SSL/TLS 安全等级
        • TLS 版本及密码套件说明
      • 开启 OCSP 装订
    • 引用
      • 使用OpenSSL生成自签名证书
      • 证书格式要求
    • 使用无密钥证书
当前内容仅提供英语版本,中文版我们将尽快补充,感谢您的理解。
文档概览/
边缘安全/
DDoS 防护/
配置独立 DDoS 防护策略/
调整 DDoS 防护等级/

调整 DDoS 防护等级

The Protection level is the default protection template provided by EdgeOne DDoS protection. DDoS protection will automatically intercept traffic attacks that match the features according to the protection level. The following are the protection strategy descriptions for each protection level:
Note:
This function is only supported when the L4 proxy is enabled for Exclusive DDoS protection. The default platform protection and L7 site Exclusive DDoS protection do not support configuration.

Protection strategies for each protection level

Comparison items
Loose
The cleaning strategy is relatively loose, and only attack packets with clear attack features are protected. It is suggested to enable when false interception is suspected, and complex attacks may penetrate.
Moderate (default)
The cleaning strategy adapts to the vast majority of businesses and can effectively protect against common attacks. DDoS protection defaults to moderate mode.
Strict
The cleaning strategy is relatively strict, and it is recommended to use when attack penetration occurs in normal mode.
Data packets with clear attack features
SYN data package
Filter
Filter
Filter
ACK data package
Filter
Filter
Filter
UDP data package
Filter
Filter
Filter
Data packets not conforming to protocol specifications
TCP data package
Filter
Filter
Filter
UDP data package
Filter
Filter
Filter
ICMP data package
Filter
Filter
Filter
Attack data packets based on threat intelligence
Not filter
Filter
Filter
Active verification of some access source IP
Not filter
Filter
Filter
ICMP attack packet
Not filter
Not filter
Filter

Adjust protection level

If your business has the following two situations, it is recommended that you adjust the protection level:
During the current business operation, if there is false interception in the Log analytics, in order to ensure the availability of the business, you can reduce the protection strategy level to Loose;
During the current business operation, if there is still attack penetration to the origin under the Moderate protection level, it is recommended that you increase the protection level to Strict.
You can follow the steps below to adjust:
1. Log in to the EdgeOne console, click on the site list in the left menu bar, and click on the site to be configured in the site list to enter the site details page.
2. On the site details page, click Security > DDoS Mitigation to enter the DDoS protection detail page.
3. In the L4 proxy protection tab, select the L4 proxy protection instance that needs to be configured, and click Security configuration.
4. Find the L3/4 DDoS Protection level card, click Set, and adjust the protection level;