tencent cloud

Protection Description

"CC Protection" identifies and blocks CC attacks based on access attributes and connection status. It provides scenario-specific configurations to create protection rules, helping secure your business. It also supports the cleaning threshold setting.

Note：

This switch controls wether to enable CC protection. Only when it is on, all the CC protection policies take effect.

Prerequisites

You have successfully purchased an Anti-DDoS Pro instance and set the protected target.

Directions

1. Log in to the new Anti-DDoS console and select Configurations on the left sidebar. Open the CC Protection tab.
2. Select an Anti-DDoS Pro instance ID in the list on the left, such as "bgp-00xxxxxx".
   
3. To enable CC protection in the "CC Protection and Cleansing Threshold" section, click and set a cleansing threshold.

   Note：

   • The cleansing threshold is the threshold for Anti-DDoS services to start cleansing traffic. If the number of HTTP requests sent to the specified domain name exceeds the threshold, CC protection will be triggered.
   • If the IP bound to the Anti-DDoS Pro instance is from WAF, you need to first enable CC protection for the IP in the WAF console. For more information, see CC Protection Rules.

4. Click Set in the CC Protection and Cleansing Threshold section to enter the rule list.
5. Click Create, and enter the required fields and set a cleansing threshold.

Note：

• When you create CC frequency limiting rules, CC protection is enabled by default.
• Connected Anti-DDoS Pro instances will use the default cleansing threshold, and the system will generate a baseline based on historical patterns of your application traffic. You can set a cleansing threshold for a single domain name.

6. Click Save.

Note：

Refined rules take precedence over rules at the Anti-DDoS Pro instance dimension.

7. After the rule is created, it is added to the rule list. When the defense level is "Custom", click and to enable CC protection and set a cleansing threshold.