Integration of Anti-DDoS Service with UWAF
?> Note:
Based on UWAF SaaS Edition.
The UCloud Global Anti-DDoS service and Web Application Firewall (UWAF) are fully compatible.
Deployment Architecture
Purchasing UWAF
Log in to the UCloud Global console and choose UWAF from the product list: 【All Products】 -> 【Security Protection】 -> 【WEB Application Firewall UWAF】, then click 【Start Using】 (if the service has not been activated yet, please activate it first).
Adding Domains
In the 【Domain Management】tab of the UWAF console, click on【Add Domain】. Fill in the site domain name, source site IP and other information in the pop-up window. The domain can either be a general domain or a complete subdomain. After clicking 【Confirm】, get the generated CNAME information on the interface.
!> Attention:
The domain must have already been filed, unfiled domains cannot be added. Regions outside of Mainland China including Hong Kong, Macau, Taiwan and overseas are not subject to the filing restrictions.
If the site protected is an HTTPS site, you need to upload the SSL certificate of the site. If the certificate is purchased from USSL or hosted onUSSL, the certificate for the corresponding domain will be automatically pulled when adding the HTTPS site.
Domain Testing
PING the CNAME protection domain to get the allocated UWAF IP.
Modifying the Anti-DDoS Source Site IP
- Configure Anti-DDoS, the source site IP should be the UWAF IP obtained earlier
- After clicking confirm, the CNAME address of the Anti-DDoS will be generated
- Then configure DNS, resolve the domain to be protected to the Anti-DDoS CNAME, and the configuration is complete.