Configuring HTTPS Flood Attack Defense

This section describes how to configure global HTTPS flood attack defense.

Prerequisites

The interface-based traffic statistics collection function is enabled.

Procedure

In the user view, access the system view.
```
system-view
```
Configure global HTTPS flood attack defense.
```
anti-ddos https-flood source-detect [ alert-rate alert-rate ]
```
When the rate of HTTPS packets (regardless of request or response packets) destined for the same IP address with the destination port being 443 reaches the alarm threshold alert-rate, HTTPS flood attack defense is triggered. alert-rate is an integer ranging from 1 to 80000000, in pps. The default value is 2000.
The defense threshold can be automatically learned or manually configured. For details about the threshold learning configuration, see Configuring Threshold Learning.

Parent Topic: Configuring DDoS Attack Defense

Copyright © Huawei Technologies Co., Ltd.

Copyright © Huawei Technologies Co., Ltd.

< Previous topic Next topic >