- NAME
-
- gcloud alpha compute security-policies add-layer7-ddos-defense-threshold-config - add a layer7 ddos defense threshold config to a Compute Engine security policy
- SYNOPSIS
-
-
gcloud alpha compute security-policies add-layer7-ddos-defense-threshold-configNAME--threshold-config-name=THRESHOLD_CONFIG_NAME[--auto-deploy-confidence-threshold=AUTO_DEPLOY_CONFIDENCE_THRESHOLD] [--auto-deploy-expiration-sec=AUTO_DEPLOY_EXPIRATION_SEC] [--auto-deploy-impacted-baseline-threshold=AUTO_DEPLOY_IMPACTED_BASELINE_THRESHOLD] [--auto-deploy-load-threshold=AUTO_DEPLOY_LOAD_THRESHOLD] [--detection-absolute-qps=DETECTION_ABSOLUTE_QPS] [--detection-load-threshold=DETECTION_LOAD_THRESHOLD] [--detection-relative-to-baseline-qps=DETECTION_RELATIVE_TO_BASELINE_QPS] [--traffic-granularity-configs=[type=TYPE[,value=VALUE][,enableEachUniqueValue=ENABLE_EACH_UNIQUE_VALUE];…;…]] [GCLOUD_WIDE_FLAG …]
-
- DESCRIPTION
-
(ALPHA)gcloud alpha compute security-policies add-layer7-ddos-defense-threshold-configis used to add layer7 ddos defense threshold configs to security policies. - EXAMPLES
-
To add a layer7 ddos defense threshold config run the following command:
gcloud alpha compute security-policies add-layer7-ddos-defense-threshold-config NAME --threshold-config-name=my-threshold-config-name --auto-deploy-load-threshold=0.7 --auto-deploy-confidence-threshold=0.8 --auto-deploy-impacted-baseline-threshold=0.1 --auto-deploy-expiration-sec=4800 --detection-load-threshold=0.4 --detection-absolute-qps=1000 --detection-relative-to-baseline-qps=2.0 --traffic-granularity-configs=type=HTTP_HEADER_HOST,value=www.my-test-host.com;type=HTTP_PATH,enableEachUniqueValue=true - POSITIONAL ARGUMENTS
-
NAME- Name of the security policy to update.
- REQUIRED FLAGS
-
--threshold-config-name=THRESHOLD_CONFIG_NAME- The name for the threshold config.
- OPTIONAL FLAGS
-
--auto-deploy-confidence-threshold=AUTO_DEPLOY_CONFIDENCE_THRESHOLD- The threshold of the confidence of an identified attack, over which auto-deploy takes action.
--auto-deploy-expiration-sec=AUTO_DEPLOY_EXPIRATION_SEC- The duration of actions, if any, taken by auto-deploy.
--auto-deploy-impacted-baseline-threshold=AUTO_DEPLOY_IMPACTED_BASELINE_THRESHOLD- The threshold on the estimated impact to the baseline traffic of a suggested mitigation, below which auto-deploy takes action.
--auto-deploy-load-threshold=AUTO_DEPLOY_LOAD_THRESHOLD- The threshold on backend's load, over which auto-deploy takes action.
--detection-absolute-qps=DETECTION_ABSOLUTE_QPS- The absolute QPS of the incoming traffic, over which adaptive protection detects an attack.
--detection-load-threshold=DETECTION_LOAD_THRESHOLD- The threshold on backend's load, over which adaptive protection detects an attack.
--detection-relative-to-baseline-qps=DETECTION_RELATIVE_TO_BASELINE_QPS- The QPS of the incoming traffic relative to the average baseline QPS, over which adaptive protection detects an attack.
--traffic-granularity-configs=[type=TYPE[,value=VALUE][,enableEachUniqueValue=ENABLE_EACH_UNIQUE_VALUE];…;…]- Specify up to 2 configs matching a specifc type/value of traffic.
- GCLOUD WIDE FLAGS
-
These flags are available to all commands:
--access-token-file,--account,--billing-project,--configuration,--flags-file,--flatten,--format,--help,--impersonate-service-account,--log-http,--project,--quiet,--trace-token,--user-output-enabled,--verbosity.Run
$ gcloud helpfor details. - NOTES
-
This command is currently in alpha and might change without notice. If this
command fails with API permission errors despite specifying the correct project,
you might be trying to access an API with an invitation-only early access
allowlist. These variants are also available:
gcloud compute security-policies add-layer7-ddos-defense-threshold-configgcloud beta compute security-policies add-layer7-ddos-defense-threshold-config
Except as otherwise noted, the content of this page is licensed under the Creative Commons Attribution 4.0 License, and code samples are licensed under the Apache 2.0 License. For details, see the Google Developers Site Policies. Java is a registered trademark of Oracle and/or its affiliates.
Last updated 2024-02-06 UTC.
[{
"type": "thumb-down",
"id": "hardToUnderstand",
"label":"Hard to understand"
},{
"type": "thumb-down",
"id": "incorrectInformationOrSampleCode",
"label":"Incorrect information or sample code"
},{
"type": "thumb-down",
"id": "missingTheInformationSamplesINeed",
"label":"Missing the information/samples I need"
},{
"type": "thumb-down",
"id": "otherDown",
"label":"Other"
}]
[{
"type": "thumb-up",
"id": "easyToUnderstand",
"label":"Easy to understand"
},{
"type": "thumb-up",
"id": "solvedMyProblem",
"label":"Solved my problem"
},{
"type": "thumb-up",
"id": "otherUp",
"label":"Other"
}]