Release Notes and Announcements
- Release Notes
- Security Announcement
- Announcements
Product Introduction
- Overview
- Strengths
- Use Cases
- Comparison Between EdgeOne and CDN Products
- Use Limits
Purchase Guide
- Description of Trial Plan Experience Benefits
- Free Plan Guide
- Billing Overview
- Billing Items
- Subscriptions
- Renewals
- Instructions for overdue and refunds
- Comparison of EdgeOne Plans
- About "clean traffic" billing instructions
- DDoS Protection Capacity Description
Getting Started
- Choose business scenario
- Quick access to website security acceleration
- Quick deploying a website with Pages
Domain Service&Origin Configuration
- Domain Service
- HTTPS Certificate
- Origin Configuration
Site Acceleration
- Overview
- Access Control
- Smart Acceleration
- Cache Configuration
- File Optimization
- Network Optimization
- URL Rewrite
- Modifying Header
- Modify the response content
- Rule Engine
- Image&Video Processing
- Speed limit for single connection download
DDoS & Web Protection
- Overview
- DDoS Protection
- Web Protection
- Bot Management
- API Discovery（Beta）
Edge Functions
- Overview
- Getting Started
- Operation Guide
- Runtime APIs
- Sample Functions
- Best Practices
KV Storage
- Overview
- Operation Guide
Edge inference
- Edge Inference Overview
- Quick Guide
Pages
L4 Proxy
- Overview
- Creating an L4 Proxy Instance
- Modifying an L4 Proxy Instance
- Disabling or Deleting an L4 Proxy Instance
- Batch Configuring Forwarding Rules
- Obtaining Real Client IPs
Data Analysis&Log Service
- Log Service
- Data Analysis
- Alarm Service
Site and Billing Management
- Billing Management
- Site Management
- Version Management
- General Policy
General Reference
- Configuration Syntax
- Request and Response Actions
- Country/region and Corresponding Codes
Terraform
- Overview
- Installing and Configuring Terraform
Practical Tutorial
- EdgeOne Skill User Guide
- Automatic Warm-up/Cache Purge
- Resource Abuse/hotlinking Protection Practical
- HTTPS Related Practices
- Acceleration Optimization
- Scheduling Traffic
- Data Analysis and Alerting
- Log Platform Integration Practices
- Configuring Origin Servers for Cloud Object Storage (Such As COS)
- CORS Response Configuration
API Documentation
- History
- Introduction
- API Category
- Making API Requests
- Site APIs
- Accelerated Domain Name Management APIs
- Site Acceleration Configuration APIs
- Edge Function APIs
- Alias Domain APIs
- Security Configuration APIs
- Layer 4 Application Proxy APIs
- Content Management APIs
- Data Analysis APIs
- Log Service APIs
- Billing APIs
- Certificate APIs
- Origin Protection APIs
- Load Balancing APIs
- Diagnostic Tool APIs
- Custom Response Page APIs
- Version Management APIs
- API Security APIs
- DNS Record APIs
- Content Identifier APIs
- Legacy APIs
- Ownership APIs
- Image and Video Processing APIs
- Multi-Channel Security Gateway APIs
- KV Storage APIs
- Data Types
- Error Codes
FAQs
- Product Features FAQs
- DNS Record FAQs
- Domain Configuration FAQs
- Site Acceleration FAQs
- Data and Log FAQs
- Security Protection-related Queries
- Origin Configuration FAQs
Troubleshooting
- Reference for Abnormal Status Codes
- Troubleshooting Guide for EdgeOne 4XX/5XX Status Codes
- 520/524 Status Code Troubleshooting Guide
- 521/522 Status Code Troubleshooting Guide
- Tool Guide
Agreements
- Service Level Agreement
- Origin Protection Enablement Conditions of Use
TEO Policy
- Privacy Policy
- Data Processing And Security Agreement
Contact Us
Glossary

DDoS Protection Processing Order

Download

Focus Mode

Font Size

Last updated: 2026-01-26 15:50:42

DDoS protection provides flexible DDoS custom protection policy for your business protection needs. You can configure flexible policies based on special business characteristics to handle ever-changing attack techniques. For layer 4 proxy instances, it supports the following custom rule configuration capability:
Protection Module
Feature Description
IP Blocklist and Allowlist
Limit access to EdgeOne sites via IP blocklist and allowlist match when attacking.
Port filtering
Limit access to EdgeOne sites by restricting specified ports with custom port rules during DDoS attacks.
Protocol blocking
Configurable to only allow users through specified protocol to access EdgeOne site.
Connection attack protection
Support for protection against connection-based attacks, with auto-block for clients showing abnormal connect behavior.
Feature filtering
Support custom policies targeting the characteristics of IP, TCP, and UDP packet headers or payloads in DDoS attacks.
Regional block
Limit access to EdgeOne sites via matching region in DDoS attacks.
Note:
1. L3/4 DDoS protection policies are only available for L4 proxy instances with advanced or ultimate protection levels. They cannot be configured for other scenarios.
2. When access traffic matches policies of multiple protection modules at the same time, EO will process them by the module order shown in the table.

Help and Support

Was this page helpful?

You can also Contact sales or Submit a Ticket for help.

Help us improve! Rate your documentation experience in 5 mins.

Feedback

tencent cloud

Tencent Cloud EdgeOne

DDoS Protection Processing Order

Help and Support

Protection Module	Feature Description
IP Blocklist and Allowlist	Limit access to EdgeOne sites via IP blocklist and allowlist match when attacking.
Port filtering	Limit access to EdgeOne sites by restricting specified ports with custom port rules during DDoS attacks.
Protocol blocking	Configurable to only allow users through specified protocol to access EdgeOne site.
Connection attack protection	Support for protection against connection-based attacks, with auto-block for clients showing abnormal connect behavior.
Feature filtering	Support custom policies targeting the characteristics of IP, TCP, and UDP packet headers or payloads in DDoS attacks.
Regional block	Limit access to EdgeOne sites via matching region in DDoS attacks.