Tiếng Việt
中文 (中国)
DDoS Appliance Import Procedure in Vietnam
A DDoS appliance is a network security device used to detect, filter and mitigate distributed denial-of-service attacks. If the shipment is described vaguely as “network appliance” or “security device”, the importer may face HS classification questions, cybersecurity import licensing, civil cryptography review, product labeling issues and C/O discrepancies. This guide provides an E2E (End-to-End) compliance map covering HS code, duties, specialized management, customs documents and pre-ETA risk controls.
| Item | What to review |
|---|---|
| Product scope | DDoS appliance – dedicated hardware/chassis/appliance for DDoS detection, prevention, mitigation, scrubbing or attack traffic filtering. |
| Related product group | Firewall, NAC, IPS/IDS, DDoS appliance, SIEM, UTM, Network Monitoring – not automatically interchangeable by policy. |
| Reference HS codes | 8471.30.90 / 8471.41.90 / 8471.49.90 / 8517.62.43 / 8517.62.49 depending on technical nature and network/data-processing function. |
| Proposed tax view | MFN often 0%, VAT 10%, normal import duty 5% as a reference; special FTA rate may be reviewed if a valid C/O is available. |
| Key policy | Cybersecurity product import license if the model falls under the list; ICT group-2 and civil cryptography review if applicable. |
| Operational warning | Do not wait until arrival to verify datasheet, license, firmware, model list, encryption features and bundled subscription/license. |
SCOPE OF APPLICATION
Applicable product
Dedicated DDoS appliance that detects, analyzes, filters, rate-limits, scrubs or mitigates DDoS traffic against networks, servers, applications or data centers.
No automatic extension
Firewall, IPS/IDS, UTM, SIEM, Network Monitoring, WAF, VPN appliance, secure router or multifunction security appliance may follow different HS/policy treatment.
Shipment condition matters
New, refurbished, demo/lab, warranty replacement, RMA, project cargo or EPE/FDI import may require different supporting documents and valuation treatment.
Mandatory review condition
Review must be based on catalogue, datasheet, model and actual import purpose, especially where network modules, software license, VPN/IPSec/TLS/SSL, encryption or power accessories are included.
CLASSIFICATION & TECHNICAL IDENTIFICATION
For a DDoS appliance, classification depends not only on the commercial name but also on device architecture, security function, deployment model and bundled license/firmware. A weak description may cause HS, cybersecurity licensing, labeling or C/O issues.
| Check point | Documents to compare | Risk if misdescribed | Suggested description |
|---|---|---|---|
| Commercial name/model | Catalogue, datasheet, model list, original label | May be treated as generic network equipment or firewall if DDoS function is unclear | “DDoS protection appliance, model…, for denial-of-service attack mitigation, brand new” |
| Main function | Datasheet, user manual, license sheet | Wrong policy if the device is actually firewall/IPS/WAF/UTM | State DDoS detection/prevention/mitigation, traffic scrubbing, attack filtering |
| Hardware architecture | Photos, CPU/port/throughput/rack unit specs | Confusion between ADP machine, switch/router and dedicated security appliance | Describe rack appliance, chassis, ports, power supply and optical modules if any |
| Encryption/security features | Security features, firmware/license, admin guide | May trigger civil cryptography or cybersecurity review | Clarify VPN, IPSec, SSL decryption, TLS inspection, key management |
| License/subscription | Commercial invoice, PO, license certificate | Valuation and policy may be inconsistent if license is omitted | Separate physical appliance, license, subscription and support if any |
| Condition of goods | Invoice, packing list, label photos, serial list | Refurbished/used goods may follow different policy | State “new 100%” or “refurbished/used” according to fact |
HS CODE – DUTY – C/O
DDoS appliance is referenced in the cybersecurity import licensing list as DDoS Prevention. Customs HS classification must still follow the actual technical nature: automatic data-processing equipment, system form, or network controller/adaptor equipment. Therefore, one HS code should not be applied to all models without technical review.
| Reference HS code | Application condition | Risk if misapplied | Documents to compare |
|---|---|---|---|
| 8471.30.90 | Consider only where the model is a portable ADP machine not exceeding 10 kg with CPU, keyboard and display. | Incorrect if the goods are rack appliances without portable computer characteristics. | Catalogue, photos, dimensions/weight, CPU/I/O specs. |
| 8471.41.90 | Consider where it is an ADP machine in the same housing with CPU, input and output units. | Incorrect if the essential character is network equipment under heading 8517. | Datasheet, system configuration, topology, user manual. |
| 8471.49.90 | Consider where it is an ADP system not more specifically classified elsewhere. | Incorrect if it is a controller/adaptor only designed for connection to ADP machines. | Catalogue, system diagram, module list, bill of material if needed. |
| 8517.62.43 | Consider where the model is a controller/adaptor, connector, bridge, router or similar device solely for connection to ADP machines of heading 84.71. | Incorrect if the appliance is an independent ADP/server appliance. | Port list, throughput, switching/routing/controller function. |
| 8517.62.49 | Consider where the model is another data transmission/reception network device, not fitting 8517.62.43 but still falling under switching/routing or similar data communication equipment. | Incorrect if the product is not Chapter 85 data transmission/reception equipment or is primarily an ADP machine of Chapter 84. | Data transmission function, port list, deployment diagram, catalogue and traffic-processing description. |
Duties and C/O to review
| HS code | Normal import duty | MFN import duty | VAT | Special preferential C/O rate | Application note |
|---|---|---|---|---|---|
| 8471.30.90 | 5% reference | 0% | 10% | Review 0% if valid FTA C/O is available | Rare case: DDoS appliance in portable ADP-machine form. |
| 8471.41.90 | 5% reference | 0% | 10% | Review 0% if valid FTA C/O is available | ADP machine in one housing with CPU/I/O. |
| 8471.49.90 | 5% reference | 0% | 10% | Review 0% if valid FTA C/O is available | ADP equipment/system form. |
| 8517.62.43 | 5% reference | 0% | 10% | Review 0% if valid FTA C/O is available | Network controller/adaptor equipment for ADP connection. |
| 8517.62.49 | 5% reference | 0% | 10% | Review 0% if valid FTA C/O is available | Other data transmission/reception equipment; only where technical description supports this classification. |
SPECIALIZED MANAGEMENT MATRIX
| Goods situation | Potential policy | Documents to check | Authority/portal if identifiable | Recommended timing | Risk note |
|---|---|---|---|---|---|
| DDoS appliance falling under the cybersecurity import licensing list | Review import license for cybersecurity products | Catalogue, datasheet, DDoS Prevention function, model list | Department of Cybersecurity and Hi-Tech Crime Prevention on the Ministry of Public Security public service portal/National public service portal, or the competent authority/portal applicable at the filing date | Before ETA and before customs declaration | Missing license may lead to supplementary document requests or clearance delay. |
| Device with dedicated VPN/IPSec/SSL/TLS/key management | Review civil cryptography control if within scope | Security features, admin guide, encryption specification, license sheet | Competent cryptography authority under current regulations | Before contract/shipment | Not every encryption function requires a license, but exclusion must be documented. |
| Device with Wi-Fi/Bluetooth/4G/5G or radio module | Review ICT group-2 conformity/quality inspection if listed | RF datasheet, test report, applicable QCVN, module certificate | Telecom/quality authority under current procedures | Before ETA or specialized filing stage | Rack DDoS appliances usually have no RF, but wireless models must be separated. |
| Accessory: power supply, transceiver, optical module | Review labeling, safety/EMC scope if applicable | Packing list, accessory list, label photos, accessory datasheet | Customs/specialized authority if applicable | Before document lock | Accessories may affect description, value or policy. |
| Refurbished/used/demo/RMA goods | Review used/refurbished policy and condition evidence | Invoice, refurbished certificate, serial list, RMA letter | Customs and relevant specialized authority | Before shipment | Do not declare “brand new” if documents show refurbished/used. |
| EPE/FDI/data center project cargo | Review import purpose, customs regime and project evidence | Contract, PO, project documents, usage purpose | Local customs/EPE/FDI management unit | Before ETA | Wrong customs regime or missing project evidence may create post-clearance risk. |
LEGAL REFERENCES TO REVIEW
| Document group | Legal text | Issuing body | Effective/application timing | Role in procedure | Key article/appendix | Review note |
|---|---|---|---|---|---|---|
| Law | Law on Cyberinformation Security No. 86/2015/QH13 | National Assembly | Effective from 01 Jul 2016 | Foundation for cybersecurity product import control | Articles 39 and 48 should be reviewed where applicable | Apply based on the actual function of the appliance. |
| Decree | Decree 108/2016/ND-CP and amendments if applicable | Government | Check current effect before applying | Detailed conditions for cybersecurity product business/import licensing | Licensing conditions and dossier provisions | Applicable where the product is in the licensed list. |
| Circular | Circular 13/2018/TT-BTTTT as amended by Circular 10/2022/TT-BTTTT | Ministry of Information and Communications | Circular 10/2022 effective from 15 Sep 2022; HS 8517.62.43 applied under its transitional provision | Cybersecurity product import licensing list and procedure | Appendix I: DDoS Prevention | Core basis for import license review. |
| Circular | Circular 29/2025/TT-BKHCN | Ministry of Science and Technology | Effective from 31 Dec 2025 | ICT group-2 goods and conformity declaration/certification if applicable | Appendix I/II and applicable QCVN | Apply by model and actual ICT/telecom function. |
| Decree | Decree 211/2025/ND-CP | Government | Check effective date and current status | Civil cryptography activities and import control | List/dossier for civil cryptography products if applicable | Only relevant where the device has regulated cryptography function. |
| Decree | Decree 43/2017/ND-CP and Decree 111/2021/ND-CP | Government | Check current effect before applying | Imported goods labeling and Vietnamese sub-label | Mandatory label contents | Check model, origin, manufacturer, importer and technical specs. |
| Tariff | Current import tariff and relevant FTA tariff schedules | Government/Ministry of Finance | At customs declaration date | MFN, normal duty, VAT and special preferential tariff under C/O | HS 8471.30.90, 8471.41.90, 8471.49.90, 8517.62.43 | Do not use outdated tax rates. |
VIEW / DOWNLOAD ORIGINAL LEGAL TEXTS
Companies should cross-check the legal texts on the Vietnam legal document portal or the issuing authority’s website before application.
CUSTOMS CLEARANCE DOCUMENT SET
Commercial documents
Commercial Invoice, Packing List, Bill of Lading/Air Waybill, Sales Contract/Purchase Order, C/O if claiming preference, catalogue/datasheet, photos, model list/serial list.
Specialized documents if applicable
Cybersecurity product import license, ICT conformity/quality dossier if applicable, test report, civil cryptography dossier if applicable, technical file, license/subscription sheet and labeling dossier.
| Document group | Required documents | Used for | Usually prepared by | Common error | Pre-ETA check |
|---|---|---|---|---|---|
| Commercial | Invoice, Packing List, B/L/AWB, Contract/PO | Declaration, value, quantity and Incoterms | Importer, shipper, procurement, docs | Generic product name, missing model/serial, missing license | Match product name, model, quantity, origin and value before ETA. |
| Technical | Catalogue, datasheet, user manual, topology | HS and policy determination | Supplier, IT/security team | Datasheet does not show DDoS function or shows encryption without explanation | Request official documents for the exact model, firmware and SKU. |
| Cybersecurity license | Import license if product is listed | Customs dossier/specialized compliance | Importer/legal/compliance | Filing after ETA causes storage/delay risk | Lock model/function and filing route before arrival. |
| C/O | FTA C/O and through B/L if transit | Special preferential duty claim | Shipper, exporter, importer | Wrong form, HS, description, seal/signature | Check C/O draft against invoice, bill and declaration. |
| Labeling | Original label, Vietnamese sub-label, label photos | Physical inspection/post-clearance circulation | Importer, warehouse, compliance | Missing model, origin, manufacturer, power specs | Prepare sub-label before distribution/installation if required. |
CLEARANCE DECISION POINTS THAT MAY HOLD THE SHIPMENT
| Decision point | Question to answer | Evidence | Consequence if unclear | Recommended handling |
|---|---|---|---|---|
| HS basis | Is the DDoS appliance ADP equipment or network equipment? | Catalogue, datasheet, photos, topology | HS consultation or channel escalation | Prepare HS rationale based on main function. |
| Cybersecurity license | Is the model DDoS Prevention under the list? | Appendix list, datasheet, license sheet | License/document request | Review license before ETA. |
| Civil cryptography | Does it have dedicated VPN/IPSec/SSL/key management? | Security feature list, admin guide | Additional license/exclusion request | Separate ordinary security from regulated cryptography. |
| Model consistency | Do invoice, PL, catalogue, label and license match? | Model list, serial list | Correction or explanation request | Lock model list before shipment. |
| C/O validity | Do form, origin criterion, HS and description match? | C/O, invoice, bill, transit route | Loss of preferential tariff | Review draft C/O before issuance. |
| Condition of goods | New, used, refurbished, demo or RMA? | Invoice, RMA letter, serial history | Different policy or misdeclaration concern | State the condition truthfully. |
PRACTICAL E2E PROCESS
Pre-ETA review
Confirm product nature, HS direction, cybersecurity/civil cryptography/ICT policy, duties, C/O, labeling and goods condition.
Lock commercial and technical documents
Match Invoice, Packing List, B/L/AWB, PO/Contract, catalogue, datasheet, model/serial list, license/subscription and DDoS functional description.
File specialized license/inspection if applicable
If listed as cybersecurity import product or subject to civil cryptography/ICT group-2 control, prepare and submit the dossier before customs declaration.
Customs declaration
Declare HS, value, origin, product name, model, bundled license and applicable specialized policies. Green channel allows conditional release; Yellow checks documents; Red checks documents and physical goods.
Release, inland delivery and post-clearance file
Deliver to warehouse/project site, complete labels/conformity marks if applicable, and retain license, C/O, HS rationale and full shipment dossier for post-clearance review.
PRE-ETA RISK CHECKLIST
| Risk | Consequence | Pre-ETA control | Document to check |
|---|---|---|---|
| Generic product description | HS/policy questions | State DDoS protection appliance, model, function and condition | Invoice, PL, catalogue, label |
| Missing cybersecurity license | Clearance delay and storage cost | Determine whether the model is DDoS Prevention before shipment | Circular 13/2018, Circular 10/2022, datasheet |
| Model mismatch | Specialized dossier rejection or document amendment | Lock model/SKU/serial list before ETA | Invoice, PL, catalogue, license, label |
| Unreviewed encryption function | Possible civil cryptography issue | Ask supplier to confirm encryption/security function | Admin guide, license sheet, technical declaration |
| Invalid C/O | Loss of preference and tax exposure | Check draft C/O before issuance | C/O, invoice, bill, transit route |
| License/subscription not separated | Value/description inconsistency | Separate physical appliance and license/support if applicable | PO, invoice, license certificate |
FAQ
Does a DDoS appliance require an import license?
It may require a cybersecurity product import license if the model falls under the DDoS Prevention list. Review by catalogue, datasheet, model and actual import purpose.
Does it require conformity certification/declaration?
Only after checking the model against the ICT group-2 list and applicable QCVN. Wireless or telecom functions may trigger additional review.
Which HS code should be used?
Do not apply one code to all models. Review 8471.30.90, 8471.41.90, 8471.49.90 or 8517.62.43 based on the technical nature.
Can C/O reduce duties?
Yes, if the C/O is valid, the origin criterion is met, and the description/HS match the declaration.
Should license/subscription be declared?
If sold together or shown in PO/invoice, it should be described and valued consistently.
Are demo/refurbished/RMA goods handled like new goods?
Not automatically. Condition, value, warranty/RMA documents and used-goods policy should be reviewed.
What if the model on invoice differs from the catalogue?
Request correction or a formal cross-reference before declaration; avoid filing inconsistent documents.
RELATED ARTICLES
EXECUTION SUPPORT FOR DDoS APPLIANCE SHIPMENTS
This guide maps HS code, duties, documents and specialized policies. In real shipments, enterprises still need to review catalogue, datasheet, model, documents, origin, license/subscription and actual import purpose.
Pre-ETA review
HS, cybersecurity/civil cryptography/ICT policies, C/O, duties, labeling and model/datasheet review.
Compliance document control
Cross-check Invoice, Packing List, B/L/AWB, C/O, license, test report, labels and technical documents.
International logistics & customs
Coordinate agents, carriers/airlines, ETA, pre-alert, customs declaration and Green/Yellow/Red channel handling.
Post-clearance file
Retain shipment dossier, license, C/O, HS rationale, labels/conformity marks if applicable.
For shipments likely to involve specialized inspection, licensing, C/O or labeling, enterprises should not wait until arrival to start the compliance review. Small discrepancies between Invoice, Packing List, catalogue, datasheet, C/O or labels may lead to document requests, clearance delays and unplanned storage costs.
NEED TO REVIEW IMPORT PROCEDURES OR A SHIPPING PLAN?
Send us the product name, shipping route, current dossier, or implementation request in advance so we can suggest a suitable approach that is practical, focused, and aligned with your shipment.
Import Procedures for Key Management Device
Database Security Import Procedure into Vietnam
Import Procedure Guide for DLP
Import procedure guide for encryption device/module
Import Procedures for Storage Security Appliances
Import procedures for Vulnerability scanner
Import procedure guide for secure router into Vietnam
Import Procedures for Encrypted Gateway
Import procedures for Database Security appliance
Import procedure guide for Vulnerability Scanner
DDoS Appliance Import Procedure in Vietnam
Import Procedures for SIEM
Import Procedure Guide for UTM
Import procedures for VPN appliance
Import Procedure Guide for Network Monitoring Appliances