Creating a Filter

Seven types of filters are available for static filtering based on the user-defined keyword and action for matched packets. When creating a filter, you can directly bind a Zone to the filter.

Procedure

Choose Defense > Policy Settings > Filter > Zone Filter.
Click .
On the Basic Information tab page, configure basic information about a filter. For detailed parameter description, see Table 1.

Table 1 Basic filter information
Parameter

Description

Name

Name of a filter.

Device Type

Select AntiDDoS1820-N from the drop-down list box.

Protocol

Protocol type.

**Table 1** Basic filter information
Parameter	Description
Name	Name of a filter.
Device Type	Select AntiDDoS1820-N from the drop-down list box.
Protocol	Protocol type.

Click the Keyword tab and configure keywords. For detailed parameter description, see Table 2.

**Table 2** Keyword
Keyword		Description	Recommended Value
protocol	Protocol	Protocol type of packets.	A maximum of 32 protocols can be specified for each filter.
dscp	DSCP	Field of IP packets.	A maximum of 32 DSCP values can be configured for each filter.
tcp-flag	TCP flag	TCP flag of packets.	A maximum of 16 TCP flags can be configured for each filter.
flow-average-octets	Minimum average octets	Average octets quantity range in a flow.	A maximum of 32 average octets quantity ranges can be configured for each filter. When the packets match one average octets range configured in a filter, the packets are considered to match the filter.
flow-average-octets	Maximum average octets	Average octets quantity range in a flow.
flow-packets	Minimum number of packets	Packet quantity range in a flow.	A maximum of 32 packet quantity ranges can be configured for each filter. When the packets match one packet quantity range configured in a filter, the packets are considered to match the filter.
flow-packets	Maximum number of packets	Packet quantity range in a flow.
flow-octets	Minimum number of octets	Octet quantity range in a flow.	A maximum of 32 octet quantity ranges can be configured for each filter. When the packets match one octet quantity range configured in a filter, the packets are considered to match the filter.
flow-octets	Maximum number of octets	Octet quantity range in a flow.
destination-port	Start port number	Destination port number range of packets.	A maximum of 32 destination port number ranges can be configured for each filter.
destination-port	End port number	Destination port number range of packets.
source-port	Start port number	Source port number range of packets.	A maximum of 32 source port number ranges can be configured for each filter.
source-port	End port number	Source port number range of packets.

Bind a Zone to the filter.
1. Click the Add Device tab.
2. Click , select a Zone, and click OK.
  Only the Zones whose Deployment Status is Succeeded are displayed on the page. Ensure that the Zone to be bound has been deployed.
Click Deployed.
- If a Zone is bound to a filter, click Deployed to deploy the filter on the AntiDDoS1820-N for the filter to take effect.
- If only a filter is created and no Zone is bound, after you click Deployed, the filter configuration is saved in the ATIC. The filter takes effect only after it is bound to a Zone and deployed again.