Anti-DDoS Pro or Anti-DDoS Premium provides the built-in global mitigation policy for websites that are added to Anti-DDoS Pro or Anti-DDoS Premium. The global mitigation policy supports three modes that are classified based on the intensity of traffic scrubbing. The policy helps you respond to volumetric attacks at the earliest opportunity. This topic describes how to configure the global mitigation policy.

Prerequisites

  • An Anti-DDoS Pro instance or an Anti-DDoS Premium instance of the Insurance, Unlimited, or Secure Mainland China Acceleration (Sec-MCA) mitigation plan is purchased.

    For more information, see Purchase an Anti-DDoS Pro or Anti-DDoS Premium instance.

  • The website that you want to protect is added to the instance on the Website Config page.

    For more information, see Add a website.

Background information

The global mitigation policy contains general protection rules that are accumulated when Anti-DDoS Pro or Anti-DDoS Premium handles common threats. After you enable the global mitigation policy, you can apply the general protection rules to the websites that are added to your instance. This reduces the risks that are caused by attacks on your websites.

You can separately enable the global mitigation policy for the domain name of each protected website. The global mitigation policy supports the following modes: Normal, Low, and Strict.

If you add a website to your instance on or after November 24, 2021, the global mitigation policy is automatically enabled for the domain name of the website and is in Normal mode. You can change the mode of the global mitigation policy based on your business requirements.
  • If you require stronger traffic scrubbing capabilities to improve mitigation performance, we recommend that you use the Strict mode.
    Notice To prevent negative impacts of mode adjustment on your business, we recommend that you submit a ticket or contact customer service in the DingTalk group before you use the Strict mode.
  • If you do not have high requirements for traffic scrubbing, we recommend that you use the Low mode. For example, you can use the Low mode during large-scale promotional events.
Notice If you added a website to your instance before November 24, 2021, the global mitigation policy is disabled for the domain name of the website. We recommend that you enable the global mitigation policy for the domain name.

Procedure

  1. Log on to the Anti-DDoS Pro console.
  2. In the top navigation bar, select the region where your instance resides.
    • Mainland China: If you select this region, the Anti-DDoS Pro console appears.
    • Outside Mainland China: If you select this region, the Anti-DDoS Premium console appears.
    You can switch the region to configure and manage Anti-DDoS Pro or Anti-DDoS Premium instances. Make sure that you select the required region when you use Anti-DDoS Pro or Anti-DDoS Premium.
  3. In the left-side navigation pane, choose Mitigation Settings > General Policies.
  4. Click the Protection for Website Services tab. On the tab that appears, select a domain name from the list in the left side.
    The domain name list displays the domain names of the websites that are added to your instance. If the domain name list does not display the domain name of your website, add the website to your instance. For more information, see Add a website.
  5. In the Global Mitigation Policy section, configure the parameters for the policy.
    You can configure the following parameters for the policy:
    • Status: You can turn on or off the switch to enable or disable the global mitigation policy. We recommend that you turn on the switch.
    • Mode: The Low, Normal, and Strict modes are supported. The following table describes the modes.
      Mode Effect Scenario
      Low Blocks specific known attacks and allows normal requests. This mode is suitable for large websites that have strong processing capabilities.
      Normal (recommended) Blocks attacks that are disclosed on the Internet but are not recorded in the historical traffic of your website. This mode has low impacts on business. This mode is suitable for scenarios in which the number of requests does not greatly fluctuate and the business attributes and user sources are stable.
      Strict Strictly blocks attacks. Normal requests may also be blocked. This mode is suitable for websites that do not have sufficient processing capabilities.