Real-time statistics about traffic destined to a specified IP address is collected for comparison with the threshold every second. When the traffic of a specified IP address exceeds the blackhole threshold, the corresponding blackhole action is triggered.
Procedure
- Configure a blackhole API.
- Configure the notification mode of second-level blackhole event.
- Set the blackhole mode of the Zone.
- Enable the second-level blackhole.
- Choose Defense > Policy Settings > Zone.
- Click
of the Zone. - In the Defense Policy dialog box, configure a blackhole policy. Table 1 lists related parameters.
Table 1 Blackhole parameter configuration Parameter
Description
Second-Level Blackhole
Select Enabled.
Threshold (Mbit/s)
Set the blackhole threshold.
When the traffic exceeds the value of Threshold, enable the corresponding blackhole type for defense.
Type
Set the blackhole type to Blackhole API.
NOTE:The blackhole API is the DamDDoS API. To implement the blackhole function using the blocking service provided by the DamDDoS, set Type to Blackhole API.
- Click OK. When the traffic of a specified IP address exceeds the blackhole threshold, the corresponding blackhole action is triggered.