Configuring the Zone

Before you configure an anti-DDoS policytraffic security policy, add Zones to be protected by anti-DDoS devices. The ATIC Management center provides refined and differentiated filtering and protection for different Zones.

Choose Defense > Policy Settings > Zone, and manage Zones.

Create	Click to add a Zone. For details, see Adding a Zone.
Modify	Click of the Zone to be modified, and modify the Zone. For the parameter description, see Adding a Zone.
Delete	NOTICE: Once the Zone is deleted, all the services, policies, packet-capturing tasks, diversion tasks, baseline-learning tasks, and service-learning tasks under the Zone will be deleted, and the Zone will be undeployed from all associated devices. Perform this operation with caution. Select the check boxes of multiple Zone accounts and click above the list to delete the selected collectors. Select the check box on the title bar and click above the list to delete all Zones.
Export	Select one or more Zones and click . On the Export Zone page, select Export content. The exported content includes the following Zone information: Basic information: indicates basic information on a Zone. IP address: indicates the IP address, IP address segment, and mask of a Zone. Defense mode: indicates the defense mode of a Zone. Filter: indicates information on the filter associated with a Zone, excluding the rules of the filter. Defense policy: indicates the defense policy configured for a Zone. Location: indicates information about IP location associated with a Zone, excluding location rules. Select Select device to select the AntiDDoS to be exported.
Export All	Click . On the Export Zone page, select Export content. The exported content includes the following Zone information: Basic information: indicates basic information on a Zone. IP address: indicates the IP address, IP address segment, and mask of a Zone. Defense mode: indicates the defense mode of a Zone. Filter: indicates information on the filter associated with a Zone, excluding the rules of the filter. Defense policy: indicates the defense policy configured for a Zone. Location: indicates information about IP location associated with a Zone, excluding location rules. Select Select device to select the AntiDDoS to be exported.
Import	Click to import defense policies in batches. The import dimensions are the same as the export dimensions. NOTE: The imported file must be an XML file exported from the ATIC. You can change the values of elements in the file, but cannot change the file structure. The data of one device can be imported each time.
View	Click the account or name of the Zone to be viewed for its basic information and IP address. Click Close to close the dialog box.
Search	Basic search On the upper right of the page, enter the account/name of the Zone to be searched for and click . The Zone that meets search conditions are displayed on the page. Advanced search Click Advanced Search. In the advanced search area that is displayed, set search conditions such as Account/Name, Type, or IP Address, and then click Search.
VPN configuration	Click in the operation column of the default Zone. Click the Include tab and synchronize the VPN route of the default Zone IP address for creating traffic diversion tasks. Click the Exclude tab and manually set the IP address and VPN name to exclude the VPN route. NOTICE: A maximum of 20,000 VPN routes can be synchronized from the ATIC to the AntiDDoS. If the synchronized VPN routes exceed 20,000, screen-length screen-length on the AntiDDoS is set to 0, and SSH is used for AntiDDoS and ATIC login, VPN route synchronization fails. Therefore, set screen-length to a value that is not 0.