Alibaba Cloud DDoS New BGP Anti-DDoS¶
The displayed metrics of Alibaba Cloud DDoS New BGP Anti-DDoS include attack protection capability, cleaning capability, response time, and reliability. These metrics reflect the performance and credibility of the New BGP Anti-DDoS service in dealing with large-scale DDoS attacks.
Configuration¶
Install Func¶
It is recommended to activate TrueWatch Integration - Extensions - DataFlux Func (Automata): all prerequisites are automatically installed, please proceed with the script installation.
If deploying Func manually, refer to Manual Deployment of Func
Install Func¶
It is recommended to activate TrueWatch Integration - Extensions - DataFlux Func (Automata).
If deploying Func manually, refer to Manual Deployment of Func
Activate Script¶
Note: Please prepare the Alibaba Cloud AK that meets the requirements in advance (for simplicity, you can directly grant the global read-only permission
ReadOnlyAccess).
Activate Script in DataFlux Func (Automata)¶
- Log in to the TrueWatch console.
- Click the 【Integration】 menu and select 【Cloud Account Management】.
- Click 【Add Cloud Account】, select 【Alibaba Cloud】, and fill in the required information on the interface. If the cloud account information has been configured before, ignore this step.
- Click 【Test】, and after the test is successful, click 【Save】. If the test fails, please check whether the relevant configuration information is correct and test again.
- Click 【Cloud Account Management】, and you can see the added cloud account in the list. Click the corresponding cloud account to enter the details page.
- Click the 【Integration】 button on the cloud account details page, and under the
Not Installedlist, findAlibaba Cloud DDoS New BGP Anti-DDoS, click the 【Install】 button, and the installation interface will pop up for installation.
Activate Script Manually¶
-
Log in to the Func console, click 【Script Market】, enter the TrueWatch script market, and search for:
integration_alibabacloud_ddoscoo. -
Click 【Install】, then enter the corresponding parameters: Alibaba Cloud AK ID, AK Secret, and account name.
-
Click 【Deploy Startup Script】, the system will automatically create the
Startupscript set and automatically configure the corresponding startup script. -
After activation, you can see the corresponding automatic trigger configuration in 「Manage / Automatic Trigger Configuration」. Click 【Execute】 to execute immediately without waiting for the scheduled time. After a while, you can check the execution task records and corresponding logs.
Verification¶
- In 「Manage / Automatic Trigger Configuration」, confirm whether the corresponding task has the corresponding automatic trigger configuration, and you can also check the corresponding task records and logs to check for any abnormalities.
- In TrueWatch, check whether asset information exists in 「Infrastructure / Custom」.
- In TrueWatch, check whether there is corresponding monitoring data in 「Metrics」.
Metrics¶
After configuring Alibaba Cloud CloudMonitor, the default measurement is as follows. More metrics can be collected through configuration Alibaba Cloud CloudMonitor Metrics Details
| MetricName | Description | Unit | Dimensions |
|---|---|---|---|
Active_connection |
Active Connections | count | userId,InstanceId,ip |
AttackTraffic |
Anti-DDoS IP Attack Traffic | bit/s | userId,InstanceId,ip |
Back_Traffic |
Anti-DDoS IP Back-to-Source Traffic | bit/s | userId,InstanceId,ip |
In_Traffic |
Anti-DDoS IP Inbound Traffic | bit/s | userId,InstanceId,ip |
Inactive_connection |
Inactive Connections | count | userId,InstanceId,ip |
New_connection |
New Connections | count | userId,InstanceId,ip |
Out_Traffic |
Anti-DDoS IP Outbound Traffic | bit/s | userId,InstanceId,ip |
qps |
QPS | countS | userId,InstanceId,ip |
qps_ratio_down |
QPS Month-on-Month Decline Rate | % | userId,InstanceId,ip |
qps_ratio_up |
QPS Month-on-Month Growth Rate | % | userId,InstanceId,ip |
resp2xx |
2XX Status Code | count | userId,InstanceId,ip |
resp2xx_ratio |
2XX Status Code Ratio | % | userId,InstanceId,ip |
resp3xx |
3XX Status Code | count | userId,InstanceId,ip |
resp3xx_ratio |
3XX Status Code Ratio | % | userId,InstanceId,ip |
resp404 |
404 Status Code | count | userId,InstanceId,ip |
resp404_ratio |
404 Status Code Ratio | % | userId,InstanceId,ip |
resp4xx |
4XX Status Code | count | userId,InstanceId,ip |
resp4xx_ratio |
4XX Status Code Ratio | % | userId,InstanceId,ip |
resp502 |
502 Status Code | count | userId,InstanceId,ip |
resp503 |
503 Status Code | count | userId,InstanceId,ip |
resp504 |
504 Status Code | count | userId,InstanceId,ip |
resp5xx |
5XX Status Code | count | userId,InstanceId,ip |
resp5xx_ratio |
5XX Status Code Ratio | % | userId,InstanceId,ip |
upstream_resp2xx |
2XX Back-to-Source Status Code | count | userId,InstanceId,ip |
upstream_resp2xx_ratio |
2XX Back-to-Source Status Code Ratio | % | userId,InstanceId,ip |
upstream_resp3xx |
3XX Back-to-Source Status Code | count | userId,InstanceId,ip |
upstream_resp3xx_ratio |
3XX Back-to-Source Status Code Ratio | % | userId,InstanceId,ip |
upstream_resp4xx |
4XX Back-to-Source Status Code | count | userId,InstanceId,ip |
upstream_resp4xx_ratio |
4XX Back-to-Source Status Code Ratio | % | userId,InstanceId,ip |
upstream_resp5xx |
5XX Back-to-Source Status Code | count | userId,InstanceId,ip |
upstream_resp5xx_ratio |
5XX Back-to-Source Status Code Ratio | % | userId,InstanceId,ip |
upstream_resp404 |
404 Back-to-Source Status Code | count | userId,InstanceId,ip |
upstream_resp404_ratio |
404 Back-to-Source Status Code Ratio | % | userId,InstanceId,ip |
Objects¶
The collected Alibaba Cloud DDoS New BGP Anti-DDoS object data structure can be seen in 「Infrastructure - Custom」.
{
"measurement": "aliyun_ddoscoo",
"tags": {
"name" : "rg-acfm2pz25js****",
"InstanceId": "rg-acfm2pz25js****",
"RegionId" : "cn-hangzhou",
"Status" : "1",
"Edition" : "9",
"IpVersion" : "Ipv4",
"Enabled" : "1"
},
"fields": {
"ExpireTime": "1637812279000",
"CreateTime": "1637812279000",
"message" : "{Instance JSON Data}"
}
}