tencent cloud

Anti-DDoS

Release Notes and Announcements
Release Notes
Announcements
Product Introduction
Overview
Strengths
Use Cases
Concepts
Blocking Policies
Relevant Products
Comparison of Anti-DDoS Solutions
Purchase Guide
Billing Overview
Purchase Directions
Getting Started
Anti-DDoS Pro
Anti-DDoS Advanced
Operation Guide
Operation Overview
Protection Overview
Usage Limits
Asset Center
Business Connection
Smart Scheduling
Protection Configuration
Security Operations
Service Management
Practical Tutorial
Remote Protection Scheme with Anti-DDoS Pro
Using Anti-DDoS Pro Together with WFA
Suggestions on Stress Tests
Solutions to Real Server IP Exposure
Creating an Anti-DDoS EIP
Configuration Directions and Notes on CC Protection Policies
Syncing Forwarding Rules to New Anti-DDoS Advanced Instances
‌Smart Scheduling of CTCC/CUCC/CMCC Traffic
Troubleshooting
Business IPs Blocked Due to High-traffic Attacks
‌Business IPs Blocked When DDoS Attack Traffic Doesn't Reach the Threshold
How to Fix a 502 Bad Gateway Error
"No ICP filing" Prompted During Domain Name Connection
A public IP suffered DDoS attacks
API Documentation
History
Introduction
API Category
Making API Requests
Anti-DDoS Advanced Instance APIs
Resource List APIs
Protection Configuration APIs
Other APIs
Alarm Notification APIs
Connection Configuration APIs
Intelligent Scheduling APIs
Black hole unblocking APIs
Statistical Report APIs
Data Types
Error Codes
FAQs
Blocking
Attacks
Features
Billing
Service Level Agreement
Product Policy
Privacy Policy
Data Processing And Security Agreement
Glossary
Documentation Anti-DDoSOperation GuideUsage Limits

Usage Limits

PDF
Focus Mode
Font Size
Last updated: 2024-07-01 11:33:59

Anti-DDoS Basic

Scope

Free Anti-DDoS service for CVM, CLB, and NAT Gateway instances.

Anti-DDoS Pro

Scope

CVM, CLB, WAF, NAT Gateway, VPN Gateway, and Lighthouse instances.

Connection limits

An Anti-DDoS Pro instance can only be bound to Tencent Cloud public IPs in the same region.
Limit on access control list
For DDoS protection, up to 100 records (IPs + IP ranges) can be blocked or allowed in the access control list.
For CC protection, a URL allowlist is not supported.

Limit on regions

An Anti-DDoS Pro instance can only be bound to Tencent Cloud devices in the same region. Supported regions: Beijing, Shanghai, Guangzhou, Hong Kong (China), Singapore, Seoul, Tokyo, Bangkok, and Frankfurt.
Note:
To purchase an Anti-DDoS Pro instance in regions outside the Chinese mainland, please contact us.

Anti-DDoS Advanced

Applicable scope

IPs and domain names for website (layer-7) and non-website (layer-4) businesses in and outside Tencent Cloud.

Limits on the forwarding capability

By default, one Anti-DDoS Advanced instance supports a total of 60 forwarding rules (L4 + L7). At most, an Anti-DDoS Advanced instance can support 500 forwarding rules. For non-website (layer-4) protocols, each rule supports 20 real server IPs or domain names. For website (layer-7) protocols, each rule supports 16 real server IPs or domain names.
Note:
The total number of forwarding rules is the sum of forwarding rules for TCP/UDP and HTTP/HTTPS, and the maximum total number can be up to 500. For TCP and UDP, if the same forwarding port number is used, two different forwarding rules need to be configured.

Limit on access control list

Up to 100 IP addresses can be added to the blocklist and allowlist in total.
A URL allowlist is not supported.

Limit on regions

Anti-DDoS Advanced is available in all Mainland. Specifically, it is supported in the following regions outside Chinese Mainland: Hong Kong (China), Taiwan (China), Singapore, Seoul, Tokyo, Virginia, Silicon Valley, and Frankfurt.
 
Previous Topic: Protection OverviewNext Topic: Cloud Assets

Help and Support

Was this page helpful?

Help us improve! Rate your documentation experience in 5 mins.

Feedback