getDDoSList

Prev Next

Available in Classic and VPC

Get the list of security events that occurred while using the Anti-DDoS (Anti-Distributed Denial of Service) service.

Request

The following describes the request format for the endpoint. The request format is as follows:

Method URI
POST /getDDoSList

Request headers

For headers common to Security Monitoring APIs, see Security Monitoring request headers.

Request body

The following describes the request body.

Field Type Required Description
startDateTime Long Required Security event query start time (Unix timestamp)
  • <E.g.> 1720540427000
endDateTime Long Required Security event query end time (Unix timestamp)
  • <E.g.> 1720540427000
page Integer Required Page number
countPerPage Integer Required Displayed number per page
order String Optional Event detection time sort order
  • asc | desc (default)
    • asc: ascending
    • desc: descending
regionCode String Optional Region code
  • KR | DEN | JPN | SGN | USWN
    • KR: Korea
    • DEN: Germany
    • JPN: Japan
    • SGN: Singapore
    • USWN: U.S.
zoneName String Optional Zone type
  • KR-1 | KR-2
attackIp String Optional Attacker IP address
targetIp String Optional IP address targeted for the attack

Request example

The following is a sample request.

curl --location --request POST 'https://securitymonitoring.apigw.ntruss.com/vsecuritymonitoring/v1/getDDoSList'
--header 'x-ncp-apigw-timestamp: {Timestamp}'
--header 'x-ncp-iam-access-key: {Access Key}' 
--header 'x-ncp-apigw-signature-v2: {API Gateway Signature}' 
--data '{
  "startDateTime": 1720450847000,
  "endDateTime": 1720535447000,
  "page": 1,
  "countPerPage": 3
}'

Response

The following describes the response format.

Response body

The following describes the response body.

Field Type Required Description
returnCode Integer - Processing result code for the request
ddosDataList[] Array - Anti-DDoS security event list
ddosDataList[].ticketId String - Unique number assigned to the security event
ddosDataList[].date String - Detection time of the security event (Unix timestamp)
ddosDataList[].product String - Service type
  • DDOS | DDOS_V2
    • DDOS: Classic environment
    • DDOS_V2: VPC environment
ddosDataList[].reportType String - Report classification
ddosDataList[].attackerIp String - Attacker IP address
ddosDataList[].targetIp String - IP address targeted for the attack
ddosDataList[].attackType String - Type of attack detected
ddosDataList[].region String - Region
ddosDataList[].zoneName String - Zone type
  • KR-1 | KR-2
ddosDataList[].platForm String - Platform type
  • CLASSIC | VPC
ddosDataList[].vpcName String - VPC name
returnMessage String - Processing result message for the request
totalRows Integer - Total number of lists searched
page Integer - No. of page requested

Response status codes

For error codes common to Security Monitoring APIs, see Common Security Monitoring error codes.

Response example

The following is a sample example.

{
    "returnCode": 0,
    "ddosDataList": [
        {
            "ticketId": "526426300",
            "date": "1720492880000",
            "product": "DDoS_V2",
            "reportType": "Analysis report",
            "attackerIp": "***.***.***.***",
            "targetIp": "***.***.***.***",
            "attackType": "DDoS",
            "region": "Korea",
            "zoneName": "KR-2",
            "platForm": "VPC",
            "vpcName": "kr-sm-vpc"
        }
    ],
    "returnMessage": "SUCCESS",
    "totalRows": 1,
    "page": 1
}