This site uses cookies. By continuing to browse the site you are agreeing to our use of cookies. Read our privacy policy>

If you need help, please click here:

AntiDDoS12000 series anti-DDoS system

Huawei HiSecEngine AntiDDoS12000 provides up to 2T+ security protection performance and service expansion capabilities, ideal for mitigating heavy-traffic DDoS attacks. It can also effectively defend against and block hundreds of complex attacks in seconds or even milliseconds, ensuring customers' service continuity.



Model AntiDDoS12004 AntiDDoS12008
Max Defense Throughput 600 Gbps 2.4Tbps
Max Defense Packet Rate 450 Mpps 900 Mpps
Expansion Slots 4 8
Expansion Interfaces 24-port 10GBase LAN/WAN-SFP+ + 2-port 100GBase-QSFP
48-port 10GBase LAN/WAN-SFP+
24-port 10GBase LAN/WAN-SFP+ + 2-port 100GBase-QSFP
48-port 10GBase LAN/WAN-SFP+
18-port 100GBase-QSFP
Dimensions (H x W x D) 442mm×874mm×438mm (9.8U) 442mm×874mm×703mm (15.8U)
DDoS Defense Specifications
  • Defense against protocol abuse attacks
    Defense against LAND, Fraggle, Smurf, Winnuke, Ping of Death, Teardrop, and TCP Error Flag attacks
  • Web application protection
    Defense against HTTP GET flood, HTTP POST flood, HTTP slow header, HTTP slow POST, HTTPS flood, WordPress reflection and amplification, RUDY, and LOIC attacks; packet validity check
  • Defense against scanning and sniffing attacks
    Defense against address sweep and port scan attacks, and attacks using Tracert packets and IP options, such as IP source routing, timestamp, and route record options
  • DNS application protection
    Defense against DNS Query flood, DNS Reply flood, and DNS cache poisoning attacks; source-based rate limiting
  • Defense against network-type attacks
    Defense against SYN flood, SYN-ACK flood, ACK flood, FIN flood, RST flood, TCP Fragment flood, UDP flood, UDP Fragment flood, IP flood, ICMP flood, TCP connection flood, SockStress, TCP retransmission, and TCP null connection attacks
  • SIP application protection
    Defense against SIP flood and SIP Methods flood attacks, including Register flood, Deregistration flood, Authentication flood, and Call flood attacks; support for source rate limiting
  • Defense against UDP reflection and amplification attacks
    Defense against NTP, DNS, SSDP, Chargen, TFTP, SNMP, NetBIOS, QOTD, Quake Network Protocol, PortMapper, Microsoft SQL Resolution Service, RIPv1, and Steam Protocol reflection and amplification attacks
  • Filter
    IP, TCP, UDP, ICMP, DNS, SIP, and HTTP packet filters
  • Attack signature databases
    RUDY, SlowHTTPTest, SlowLoris, LOIC, AnonCannon, RefRef, ApacheKill, ApacheBench; automatic update every week

For Partners

If you are already a Partner, please click here to get more marketing resources.
Click here to visit the Partner zone to check enquiry status, manage orders, get support, or learn more about Huawei Partners.