edit-icon download-icon

Avoid Anti-DDoS Basic false positives by using a whitelist

Last Updated: Feb 12, 2018

In some situations, you may find that some normal traffic is blocked by Anti-DDoS Basic (such as normal website service access).

For example, in an NAT network environment (hosts in the LAN share an Internet IP address for Internet access), some hosts in the LAN infected by a virus or suffering intrusion may attack an ECS server. In this situation, once Alibaba Cloud Security acknowledges the attacks, it blocks the shared Internet IP address of the NAT, resulting to an access failure.

However, you can set an Alibaba Cloud Security whitelist to avoid such false positives.


Follow these steps to set a whitelist:

  1. Log on to the Alibaba Cloud console.

  2. Go to Anti-DDoS Basic, select the server you want to add the whitelist for, and click View details.

  3. Select Scan Interception > Whitelist setting.

  4. Enter the IP address you want to add to the whitelist and click Add.

Thank you! We've received your feedback.