tencent cloud

DDoS Protection Capacity Description
Download PDF
Last updated:2026-01-15 15:42:11
DDoS Protection Capacity Description
Last updated: 2026-01-15 15:42:11
Download PDF
Note:
The following policies apply to EO DDoS Defender subscriptions beginning January 13, 2026.
After connecting your business to EdgeOne, you'll automatically receive standard DDoS protection, sufficient for most websites and TCP/UDP applications. For businesses at higher risk of DDoS attacks or requiring custom protection rules configuration, EdgeOne works with DDoS protection product together and offers a DDoS Defender plan.
Protection Area4
When NOT attached to DDoS Defender
(Standard Protection)
When attached to DDoS Defender
(Advanced Protection)
When attached to DDoS Defender plus Mainland China protection add-on (Ultimate Protection)
L3/4 DDoS capacity
China mainland
No capacity commitment5
Can defend against DDoS attacks of up to 200 Gbps
Enhanced to defend against DDoS attacks of up to 1 Tbps
Global (excluding mainland China)
Unlimited Anycast protection6
Note:
Note 1: Attack traffic dropped by DDoS scrubbing is not billed. See the Billing Notes for "Clean Traffic" for details. Clean traffic after protection is billed per the DDoS Defender pricing guide.
Note 2: By default, automatic scrubbing is triggered only when attack traffic exceeds 100 Mbps (measured per service node region; threshold is for reference—actual mitigation behavior prevails).
Note 3: Actual protection capacity is dynamically adjusted based on infrastructure availability. When an attack exceeds current capacity, EdgeOne may take additional measures—including traffic scheduling, traffic throttling, or null-routing—to safeguard platform stability.

Note 4
: The protection region for DDoS Defender aligns with the acceleration region of the EO site or layer-4 proxy instance.

Note 5:
"No capacity commitment" means EO will protect your business with limited resources to maintain infrastructure stability, without promising minimum protection bandwidth.

Note 6:
"Unlimited Anycast protection" means EO uses Anycast architecture in global regions (excluding mainland China) to defend against DDoS attacks. The protection capacity can exceed 10 Tbps. For the latest bandwidth capacity, see the product intro page.
Was this page helpful?
You can also Contact Sales or Submit a Ticket for help.
Yes
No

Feedback