If the service traffic of your asset that is assigned a public IP address exceeds the volume of your normal service traffic, Anti-DDoS Basic scrubs the attack traffic and ensures service availability as much as possible. This topic describes how to configure traffic scrubbing thresholds.
Procedure
Log on to the Traffic Security console.
In the left-side navigation pane, click Assets.
In the top navigation bar, select the region in which your asset resides.
Click the tab based on the type of assets that you want to manage. For example, you can click ECS.
In the IP address asset list, click the IP address that you want to manage. In the IP Address Details panel, click Traffic Scrubbing Settings.
In the Traffic Scrubbing Settings dialog box, configure Scrubbing Threshold for the instance and click OK.
You can set Scrubbing Threshold to one of the following values to configure traffic scrubbing thresholds:
Default: The system adjusts the default traffic scrubbing thresholds based on the traffic volume of the Elastic Compute Service (ECS) instance.
Manual: You can select specific thresholds for traffic and packets per second (pps).
NoteIf DDoS attacks are detected and the traffic or the pps reaches the selected thresholds, traffic scrubbing is triggered.
If you select Manual, take note of the following items:
Configure traffic scrubbing thresholds that are slightly greater than the actual traffic and pps. If the thresholds are significantly greater than the actual traffic and pps, the mitigation effectiveness is compromised. If the thresholds are significantly less than the actual traffic and pps, normal traffic may be scrubbed.
If service traffic is scrubbed, we recommend that you increase the traffic scrubbing thresholds.
During large promotions or activities for a website, we recommend that you increase the traffic scrubbing thresholds.