Configuring Policy Templates

A policy template defines the defense policies of various types for an AntiDDoS1820-N or AntiDDoS device model to facilitate policy configurations.

Choose Defense > Policy Settings > Policy Template.

The ATIC provides nine common policy templates by default: basic game defense (Game-Server-Standard), strict game defense (Game-Server-Super), e-commerce defense (E-Commerce-Server), finance defense (Financial-Server), web defense (WEB Server), DNS cache defense (DNS Caching Server), DNS authorization defense (DNS Authoritative Server), TCP basic defense (General-TCP-Server), and UDP basic defense (General-UDP-Server). The AntiDDoS1820-N does not support this operation.

Templates for basic game defense protect the game server. You are advised to use templates of this type if game servers are deployed on the live network.
Templates for strict game defense protect the game server. You are advised to use templates of this type if game servers are deployed on the live network. Compared with basic defense, strict defense policies are more refined.
Templates for e-commerce defense protect the e-commerce server. You are advised to use templates of this type if e-commerce servers are deployed on the live network.
Templates for finance defense protect the finance server. You are advised to use templates of this type if finance servers are deployed on the live network.
Templates for Web defense protect the Web server. You are advised to use templates of this type if HTTP or HTTPS servers are deployed on the live network.
Templates for DNS cache defense protect the DNS cache server. You are advised to use templates of this type if DNS cache servers are deployed on the live network.
Templates for DNS authorization defense protect the DNS authorization server. You are advised to use templates of this type if DNS authorization servers are deployed on the live network.
Templates for TCP basic defense protect the TCP server. You are advised to use templates of this type if no DNS or Web servers are deployed on the live network.
Templates for UDP basic defense protect the UDP server. You are advised to use templates of this type if no DNS or Web servers are deployed on the live network.

The default policy templates provided by the ATIC are not applicable to outbound traffic.

Managing Policy Templates

Action	Description
Create	Click to create a policy template manually. For details, see Creating a Policy Template. NOTE: You can save policy configurations as a template.
Modify	Click in the Operation column. On the Basic Information tab page in the Modify Policy Template dialog box, change the template name and modify remarks. Click the tab of each defense policy to modify the defense policy.
Associate a Zone	Click to associate the policy template with the Zone. For details, see Associating a Zone.
Delete	Select the check box of a policy template and click .
Query template	Enter part of a template name or the template name in Template name and click .

Creating a Policy Template

Choose Defense > Policy Settings > Policy Template.
Click .
On the Basic Information tab page, configure basic information of the policy template.

Device Type and Protocol define device model and protocol to which this template can be applied. You can create a policy template of Inbound or Outbound through Direction.

If a protocol type is specified, the created policy template applies to service policies; if not, the created policy template applies to Zone-based policies. If Device Type is set to AntiDDoS1820-N, the protocol type cannot be specified.
Click the tab of each defense policy and configure the defense policy.
Click OK.

Associating a Zone

Two methods are available for configuring the policy for the Zone with the policy template:

Import the policy template during the policy configuration.
Associate the policy template with the Zone.

Choose Defense > Policy Settings > Policy Template.
Click of the policy template.
On the Associated Zone page, click .
On the Select Zone page, select the Zone to be associated and click OK.
On the Associated Zone page, click OK.