Associate mitigation policy templates with domain names based on scenarios - Dynamic Content Delivery Network

If you want to use DDoS mitigation and the same mitigation policies for multiple domain names in high-traffic scenarios, such as new service launches and Double 11 Shopping Festival, you can use a custom mitigation policy template to meet specific DDoS mitigation requirements.

Background information

Dynamic Content Delivery Network (DCDN) provides custom scenario-specific DDoS mitigation policy templates. When you create a scenario-specific policy, you need to only select a template that you want to apply based on the business scenario and associate the template with the domain name to which you want to apply the policy. A scenario-specific policy is valid only during a specific period of time. During the specified period, the custom mitigation policy takes effect instead of the standard mitigation policy.

Important

If no traffic surges occur, we recommend that you use standard mitigation policies instead of scenario-specific policies.

Supported templates

Only the Major Events template is available. More templates will be provided in the future.

Examples

If a large-scale event is held on a website, a large number of requests are sent to the website. As a result, the website traffic is higher than usual. In this case, standard mitigation policies may report false positives. The Major Events template can automatically adjust the mitigation policies during the specified period.Scenario-specific Policies Mitigation policies are adjusted based on the following rules:

At the beginning of an event, the Major Events template saves the original configurations of the Global Mitigation Policy and Intelligent HTTP Flood Protection features, and then automatically disables the features to prevent false positives.
At the end of the event, the Important Major Events template restores the configurations of the features.

Prerequisites

DDoS mitigation is configured for domain names. For more information, see Mitigation settings.

Procedure

Log on to the DCDN console.
In the left-side navigation pane, choose DDoS Mitigation > Scenario-specific Policies.
Click Create Scenario-specific Policy.

In the Create Scenario-specific Policy dialog box, configure the parameters and click OK. The following table describes the parameters.

Parameter	Description
Policy Name	The name of the custom policy. The name can contain letters, digits, underscores (_), and hyphens (-).
Major Events	The template that you want to apply to the policy. The value can only be Major Events.
Effective Period	The validity period of the policy. The policy takes effect during this period.

Note

After you create a policy, the policy is automatically enabled. You can view the policy on the Custom Policies page and check the Status of the policy to determine whether the policy takes effect. A policy may have the following states:

Pending Enabled: The policy does not take effect. The current time is earlier than the start time of the specified validity period.
Enabled: The policy is in effect. The current time is within the specified validity period.
Expired: The policy has expired. The current time is later than the specified validity period.
Disabled: the policy is disabled. The policy does not take effect even if the current time is within the specified validity period.

Find the policy that you want to manage and click Configure Domain Name in the Actions column.
On the page that appears, select domain names for which DDoS mitigation is configured and click Confirm.
Note
If a template is applied to more than one policy, make sure that the values of the Effective Period parameter for the policies do not overlap with each other.