Cloudflare Docs
DDoS Protection
Cloudflare Docs
DDoS Protection
GitHub icon
Edit this page on GitHub
Set theme to dark (⇧+D)
  1. Products
  2. DDoS Protection
  3. ...
  4. Network-layer DDoS Attack Protection
  5. Configure in the dashboard

Configure Network-layer DDoS Attack Protection in the dashboard

Configure the Network-layer DDoS Attack Protection managed ruleset by defining overrides in the Cloudflare dashboard. DDoS overrides allow you to customize the action and sensitivity of one or more rules in the managed ruleset.

You define overrides for the Network-layer DDoS Attack Protection managed ruleset at the account level.

For more information on the available parameters and allowed values, refer to Ruleset parameters.

​​ Create a DDoS override

  1. Log in to the Cloudflare dashboard and select your account.

  2. Go to Account Home > L3/4 DDoS > Network-layer DDoS Protection.

  3. Select Deploy a DDoS override.

  4. In Set scope, specify if you wish to apply the override to all incoming packets or to a subset of the packets.

  5. If you are creating an override for a subset of the incoming packets, define the custom expression that matches the incoming packets you wish to target in the override, using either the Rule Builder or the Expression Editor.

  6. Select Next.

  7. Depending on what you wish to override, refer to the following sections (you can perform both configurations on the same override):

    Configure all the rules in the ruleset (ruleset override)
    1. Select Next.
    2. Enter a name for your override in Execution name.
    3. To always apply a given action for all the rules in the ruleset, select an action in Ruleset action.
    4. To set the sensitivity level for all the rules in the ruleset, select a value in Ruleset sensitivity.
    Configure one or more rules

    1. Search for the rules you wish to override using the available filters. You can search for tags.

    2. To override a single rule, select the desired value for a field in the displayed dropdowns next to the rule.

      To configure more than one rule, select the rules using the row checkboxes and update the fields for the selected rules using the dropdowns displayed before the table. You can also configure all the rules with a given tag. For more information, refer to Configure rules in bulk in a managed ruleset.

    3. Select Next.

    4. Enter a name for your override in Execution name.

  8. To save and deploy the override, select Deploy. If you are not ready to deploy your override, select Save as Draft.

​​ Delete a DDoS override

  1. Log in to the Cloudflare dashboard, and select your account.
  2. Go to Account Home > L3/4 DDoS > Network-layer DDoS Protection.
  3. Next to the DDoS override you wish to delete, select Delete.
  4. Select Delete to confirm the operation.