Web service provides protection against various DDoS attacks from layer 3 to layer 7, including SYN flood, ACK flood, UDP flood, ICMP flood, and HTTP flood attacks. It is designed for HTTP and HTTPS protocols, and only supports Port 80 and Port 443.
Non-Web service provides protection against various DDoS attacks from layer 3 to layer 4, including SYN flood, ACK flood, UDP flood, and ICMP flood attacks. It cannot defend against layer 7 attacks, such as HTTP flood attacks. Non-Web service is designed for layer-4 TCP and UDP protocols, and does not support Port 80 and UDP Port 53. You can use this service for TCP connection establishment, concurrent TCP connection, and other traffic restriction control at the target IP address and port level.
Non-Web service (layer-4 protection) cannot resolve the layer-7 message content, therefore it does not provide protection policies for layer-7 content.
Note: For special Web services (such as Web socket) or enabling non-standard ports (such as 8080, 8888, and 4433), you can use layer-4 forwarding rules to configure Anti-DDoS Pro.