< Home

anti-ddos https-flood source-detect

Function

The anti-ddos http-flood source-detect command enables the HTTPS flood attack defense.

The undo anti-ddos https-flood source-detect command disables the HTTPS flood attack defense.

Format

anti-ddos https-flood source-detect [ alert-rate alert-rate ]

undo anti-ddos https-flood source-detect

Parameters

Parameter Description Value
alert-rate alert-rate Specifies the threshold of the HTTPS packet rate that triggers HTTPS flood attack defense. The value is an integer ranging from 1 to 80000000, in pps. The default value is 2000.

Views

System view

Default Level

2: Configuration level

Usage Guidelines

By default, the function is disabled.

When the rate of HTTPS packets (regardless of request or response packets) destined for the same address with the destination port being 443 reaches the threshold, the FW starts source detection to defend against HTTPS flood attacks.

Example

# Set the threshold of HTTPS packet rate that triggers HTTPS flood attack defense to 4000 pps. In this case, when the HTTPS packet rate exceeds 4000 pps, the HTTPS flood attack defense is triggered.

<sysname> system-view
[sysname] anti-ddos https-flood source-detect alert-rate 4000
Parent Topic: DDoS Attack Defense Configuration Commands
Copyright © Huawei Technologies Co., Ltd.
Copyright © Huawei Technologies Co., Ltd.
< Previous topic Next topic >