Multi-path failover associates multiple cloud resource IPs with one Anti-DDoS Proxy instance, distributing traffic across paths. When a path is attacked, only that path reroutes to Anti-DDoS Proxy for mitigation.
Interaction with other cloud services
-
Configure Traffic Scheduler.
For each cloud resource IP, add an Interaction with other cloud services rule and associate all rules with the same Anti-DDoS Proxy IP.
-
Modify DNS resolution.
Add three CNAME records under the same host record. Set each record value to the CNAME from the corresponding cloud service interaction rule in Step 1. Modify the CNAME record to onboard traffic to Traffic Scheduler.
-
On a DNS checker website, verify that the CNAME records from Step 2 have propagated.
Tiered mitigation
-
Configure Anti-DDoS Origin Enterprise.
Add multiple Protected objects in Anti-DDoS Origin Enterprise.
-
Configure Traffic Scheduler.
For each protected object from Step 1, add a Tiered mitigation rule and associate all rules with the same Anti-DDoS Proxy IP.
-
Modify DNS resolution.
Add three CNAME records under the same host record. Set each record value to the CNAME from the corresponding tiered mitigation rule in Step 2. Modify the CNAME record to onboard traffic to Traffic Scheduler.
-
On a DNS checker website, verify that the CNAME records from Step 3 have propagated.