👤 Owner: Implementation Manager (IM)

Phase 7: Advanced TCP Protection (ATP)

Flowtrackd-based protection against TCP-based DDoS attacks

  • SYN flood protection
  • Out-of-state TCP protection
  • Stateful packet inspection

Default Configuration (Auto-Provisioned):

  • Mode: Monitoring (not blocking initially)
  • SYN Protection: Rate 500, Burst 2500
  • TCP Flow Protection: Rate 500, Burst 2500

Manual Configuration (if needed):

# Create account in flowtrackd
curl -X POST https://flowtrackd-api.cfdata.org/v1/accounts   -d '{"account_id": <NPID>, "tenant": "conduit_<NPID>"}'

# Enable TCP Protection
curl -X PATCH https://flowtrackd-api.cfdata.org/v1/accounts/<NPID>/configs/tcp_protection_status   -d '{"enabled": true}'
← Previous
Jump to:
Next →