What Is the Specific Delay Time of the CFW Traffic Bandwidth Graph?
Generally, there is a delay of 1 minute.
How Often Does the Traffic Center Update? How Often Do Traffic Logs Update?
The traffic center list updates every 10 minutes. The traffic log updates in real time.
CFW Traffic Peak Mismatch?
The traffic chart displays the average bandwidth. Among them, the average bandwidth refers to the average within the statistical time scale.
The peak value is calculated based on the traffic statistics collected within 10 seconds. The average traffic of a single IP is reported every 10 seconds, and the maximum value within a certain time range is taken as the peak value.
Alarm and billing are both based on the traffic statistics seen on the page.
Why Do Some Traffic Logs for Requests to Destination Port 443 Not Contain Domain Information?
1. TCP handshake is incomplete or fail to establish connection.
2. Failed when accessing the domain name.
3. Client request does not carry SNI.
Traffic Analytics of CFW. in Which Regions Is VPC Deployed? Whether Proximity Analysis Is Adopted?
Currently deployed only in the Guangzhou region. In fact, based on the business requirements of customers, a cluster is set up in each region for nearby processing.
What Is the Maximum Traffic Analysis Capacity of CFW NDR? What Is the Performance Limit of the Traffic Diversion Private Link?
The performance ceiling of Private Link has not reached the theoretical value. The actual limit depends on the private network bandwidth of the server.
How to Determine Whether the Traffic Is Private Network Traffic or Public Network Traffic? How to Determine the Traffic Imported From Other Clouds Via Dedicated Lines?
Make a type judgment based on the IP type of the source address. Since the customer VPC connected by the dedicated line belongs to the private network, this traffic is therefore identified as private network traffic.
If Most Traffic Is HTTPS, Are the Rules of the Intrusion Defense Engine Passed in for Traffic Analysis Still Valid?
Intrusion prevention rules also include rules effective against HTTPS, especially those for vulnerability type traffic, which can match features through regular expression matching. Therefore, some alerts can be detected even for encrypted traffic.
What Is the Log Size of Traffic Analysis Records?
The maximum record of a single session is 1000 bytes. In fact, the data is compressed, and not all transmitted packets are recorded.