All Products
Search

This Product

    Anti-DDoS:View the Event Center page

    Document Center

    Anti-DDoS:View the Event Center page

    Last Updated:Oct 08, 2023

    This topic describes how to view traffic scrubbing or blackhole filtering events of Alibaba Cloud assets within the last 90 days. The assets are assigned public IP addresses.

    Limits

    • If your purchase an Anti-DDoS Origin instance and enable the multi-account management feature, you can view information about blackhole filtering events of the current Alibaba Cloud account. You cannot view information about blackhole filtering events of the members.

    • If your asset uses an IPv4 address, you can view information about blackhole filtering events of the asset only within seven days after the events are generated. If your asset uses an IPv6 address, you can view information about blackhole filtering events of the asset only within 3 hours after the events are generated. If the information that you want to view is not within the preceding time ranges, the View Details button is dimmed and you cannot view the information.

    • If your asset is an elastic IP address (EIP) with Anti-DDoS (Enhanced) enabled, you cannot view information about blackhole filtering events. After you click View Details, no data is displayed.

    • If your asset is an Anycast EIP, the View Details button is dimmed and you cannot view the information about the blackhole filtering events.

    Procedure

    1. Log on to the Traffic Security console.

    2. In the left-side navigation pane, click Event Center.

    3. Enter the IP address of the asset, select the event type, asset type, and time range, and then click Search.

      Column

      Description

      Attacked Asset IP

      The public IP address of the asset that encounters the DDoS attack.

      Asset Type

      The type of the asset.

      Threshold (bit/s)

      The traffic scrubbing threshold in bit/s at which the traffic scrubbing event is triggered.

      Threshold (pps)

      The traffic scrubbing threshold in packets per second (pps) at which the traffic scrubbing event is triggered.

      Attack Time

      The start time and end time of the DDoS attack.

      Event Type

      • Traffic Scrubbing: If the traffic scrubbing threshold in bit/s or pps is reached, traffic scrubbing is triggered. You can click Cancel Traffic Scrubbing to cancel traffic scrubbing. For more information, see Cancel traffic scrubbing.

      • Blackhole Filtering: If the volume exceeds the maximum DDoS mitigation capability of an asset, blackhole filtering is triggered. For more information, see Blackhole filtering policy of Alibaba Cloud.

    4. Optional. Click View Details in the Actions column to view the trend charts of Traffic and Inbound Traffic (pps).

      Note

      • If your asset is released, the message You cannot view traffic details because the asset is removed from the current account. appears and you cannot view information about blackhole filtering events.

      • You can click Download in the upper-right corner of the Event Center page to download the evidence of DDoS attacks.