The IP address blacklist configured for an Anti-DDoS Pro or Anti-DDoS Premium instance is used to deny the requests from specified source IP addresses to the instance, and the IP address whitelist is used to allow the requests from specified source IP addresses. After you configure the blacklist and whitelist, the instance denies requests from the IP addresses that are added to the blacklist and allows the requests from the IP addresses that are added to the whitelist. This topic describes how to configure the blacklist and whitelist.

Prerequisites

An Anti-DDoS Pro or Anti-DDoS Premium instance is purchased. For more information, see Purchase mitigation plans for Anti-DDoS Pro and Anti-DDoS Premium.

Background information

The blacklist and whitelist configurations take effect only for individual Anti-DDoS Pro or Anti-DDoS Premium instances. You can manually add IP addresses to the blacklist or the whitelist, and search for, delete, or download the IP addresses that are added to the blacklist or whitelist.

Requests from the IP addresses in the blacklist are denied by the Anti-DDoS Pro or Anti-DDoS Premium instance. The following list describes the blocking periods of IP addresses:
  • If you manually add IP addresses to the blacklist, you must specify a blocking period. You can specify a blocking period from five minutes to seven days.
  • The blacklist contains malicious IP addresses that are marked by the intelligent protection algorithms of Anti-DDoS Pro or Anti-DDoS Premium. The intelligent protection algorithms dynamically calculate the blocking periods of malicious IP addresses. The blocking period can be from 5 minutes to 1 hour. If attacks are frequently launched from a malicious IP address, Anti-DDoS Pro or Anti-DDoS Premium automatically extends the blocking period of the malicious IP address.

Requests from the IP addresses in the whitelist are allowed by the Anti-DDoS Pro or Anti-DDoS Premium instance. The IP addresses in the whitelist remain valid unless you manually remove them.

If an IP address is added to both the whitelist and blacklist, the whitelist takes effect at a higher priority. If you want to add an IP address that is added to the whitelist to the blacklist, you must first remove the IP address from the whitelist.

Procedure

  1. Log on to the Anti-DDoS Pro console.
  2. In the top navigation bar, select the region where your instance resides.
    • Anti-DDoS Pro: If your instance is an Anti-DDoS Pro instance, select Chinese Mainland.
    • Anti-DDoS Premium: If your instance is an Anti-DDoS Premium instance, select Outside Chinese Mainland.
    You can switch the region to configure and manage Anti-DDoS Pro or Anti-DDoS Premium instances. Make sure that you select the required region when you use Anti-DDoS Pro or Anti-DDoS Premium.
  3. In the left-side navigation pane, choose Mitigation Settings > General Policies.
  4. On the Protection for Infrastructure tab, select the instance for which you want to configure the whitelist or blacklist.
    You can search for an instance by instance ID or description.
  5. In the Blacklist and Whitelist (Instance IP) section, click Change Settings. Blacklist and Whitelist (Instance IP)
  6. In the Blacklist and Whitelist Settings panel, click Blacklist or Whitelist to manage the blacklist or whitelist. Blacklist and Whitelist Settings
    • For more information about blacklist management, see Step 7.
    • For more information about whitelist management, see Step 8.
  7. Manage the blacklist.
    • Add an IP address to the blacklist
      1. Click Manually Add.

        You can add up to 2,000 IP addresses to the blacklist. If you enter more than one IP address, separate them with spaces or line breaks.

      2. In the Blacklist Setting dialog box, enter the IP address and set Blocking Time.
        You can select a blocking period from the Blocking Time drop-down list. The blocking period can be from five minutes to seven days. You can also customize a blocking period in seconds. Blocking period
      3. Click Add.

      After the IP address is added to the blacklist, requests from this IP address are blocked during the specified blocking period. After the specified blocking period expires, this IP address is removed from the blacklist. If you want to deny the requests from this IP address, add the IP address to the blacklist again.

    • Search for IP addresses in the blacklist: Enter a keyword in the search box to search for IP addresses that contain the keyword.
    • Clear the blacklist: Click Clear Blacklist to remove all IP addresses from the blacklist. You can also click Delete next to an IP address to remove it from the blacklist.
    • Download the blacklist
      1. Click Download to start a download task.
      2. In the message that appears, click OK.
      3. Close the Blacklist and Whitelist Settings panel.
      4. In the upper-right corner of the page, click the Task icon icon to expand the task list.
      5. Find the download task. After the status of the task changes to Exported, click Download in the Actions column.

      After you download the blacklist and save it as a TXT file to your computer, you can open the TXT file and view details about the blacklist.

  8. Manage a whitelist.
    • Add an IP address to the whitelist.
      1. Click Manually Add.
      2. In the Whitelist Setting dialog box, enter the IP address from which the requests are allowed to the whitelist.
        Note You can add up to 2,000 IP addresses to the whitelist. If you enter more than one IP address, separate them with spaces or line breaks.
        Whitelist Setting
      3. Click Add.

      After the IP address is added to the whitelist, requests from this IP address are directly forwarded to the origin server. The IP addresses in the whitelist remain valid unless you manually remove them.

    • Search for IP addresses in the whitelist: Enter a keyword in the search box to search for IP addresses that contain the keyword.
    • Clear the whitelist: Click Clear Whitelist to remove all IP addresses from the whitelist. You can also click Delete next to an IP address to remove it from the whitelist.
    • Download the whitelist.
      1. Click Download to start a download task.
      2. In the message that appears, click OK.
      3. Close the Blacklist and Whitelist Settings panel.
      4. In the upper-right corner of the page, click the Task icon icon to expand the task list.
      5. Find the download task. After the status of the task changes to Exported, click Download in the Actions column.

      After you download the whitelist and save it as a TXT file to your computer, you can open the TXT file and view details about the whitelist.