To address the issues of strong hidden DoS attack traffic, short-term high bandwidth attack pulses, static solidification of traditional entropy based detection parameters, and delayed response caused by 10G backbone links, ubiquitous access of multi-source heterogeneous terminals, and dynamic traffic scheduling of end fog cloud collaborative architecture in high-speed network environments, an anomaly detection and collaborative defense control method for DoS attacks in high-speed network environments is proposed. Firstly, millisecond level anomaly perception is achieved through Renyi entropy analysis with two-stage calibration; Furthermore, entropy weighted fuzzy ISODATA clustering is used to deeply identify and accurately classify suspicious traffic; Finally, by combining Bayesian decision mechanism with the collaborative architecture of "End Fog Cloud", intelligent interception and global collaborative defense of attack traffic are achieved. Experiments have shown that the entropy value of normal traffic remains stable at around 5 bits with minimal fluctuations; The entropy changes differently under different attacks. The peak attack traffic detected by this algorithm is 2500Gbps, which is consistent with reality. In 100 simulated attacks, the number of illegal accesses is always below 100 and stable, with high detection accuracy and real-time performance.