Buying a Cloud WAF InstanceBuying a WAF Instance

Prerequisites

Your account for logging in to the WAF console must have the WAF Administrator and BSS Administrator permissions.

Constraints

• Only one WAF edition can be purchased under an account in the same geographic region.

• The specifications of a WAF instance cannot be changed once you complete the purchase. To use a WAF instance with lower specifications, unsubscribe from the WAF instance you are using and buy another one.
• Expansion package can only be renewed or unsubscribed together with the WAF instance you are using.

Specification Limitations

• A domain package allows you to add 10 domain names to WAF, including one top-level domain and nine subdomains or wildcard domains related to the top-level domain.
• The QPS limit and bandwidth limit of a QPS expansion package:
  • For web applications deployed on Huawei Cloud

    Service bandwidth: 50 Mbit/s

    QPS: 1,000 (Each HTTP GET request is a query.)

  • For web applications not deployed on Huawei Cloud

    Service bandwidth: 20 Mbit/s

    QPS: 1,000 (Each HTTP GET request is a query.)

• A rule expansion package allows you to configure up to 10 IP address blacklist and whitelist rules.

Application Scenarios

Cloud WAF is a good choice if your service servers are deployed on the cloud or on-premises and you plan to protect your website by adding its domain names to WAF.

The application scenarios for different editions are as follows:

• Standard edition

  This edition is suitable for small- and medium-sized websites that do not have special security requirements.

• Professional

  This edition is suitable for medium-sized enterprise websites or services that are open to the Internet, focus on data security, and have high security requirements.

• Platinum

  This edition is suitable for large- and medium-sized enterprise websites that have large-scale services or have special security requirements.

Purchasing a WAF Instance Billed Yearly/Monthly

1. Log in to the management console.
2. Click in the upper left corner of the management console and select a region or project.
3. Click in the upper left corner and choose Security > Web Application Firewall.
4. In the upper right corner of the page, click Buy WAF.
5. (Optional): Select an enterprise project from the Enterprise Project drop-down list.

   This option is only available if you have logged in using an enterprise account, or if you have enabled enterprise projects. To learn more, see Enabling the Enterprise Center. You can use enterprise projects to more efficiently manage cloud resources and project members.

   

   • Value default indicates the default enterprise project. Resources that are not allocated to any enterprise projects under your account are listed in the default enterprise project.
   • The default option is available in the Enterprise Project drop-down list only when you purchase WAF under the logged-in account.

6. On the Buy Web Application Firewall page, select Cloud Mode for WAF Mode.
7. Select Yearly/Monthly for Billing Mode. Select a region and WAF edition.
   Figure 1 Selecting WAF edition
   
   

   Generally, a WAF instance purchased in any region can protect web services in all regions. To make a WAF instance forward your website traffic faster, select the region nearest to your services.

   To switch regions, select a region from the drop-down list. Only one WAF edition can be purchased in a region.

8. Specify the number of domain name, QPS, or rule expansion packages.
   For details, see Domain Name Expansion Package, QPS Expansion Package, and Rule Expansion Package.

   Figure 2 Selecting expansion packages
   

9. Configure the Required Duration. You can select the required duration from one month to three years.
   

   Select Auto-renew to enable the system to renew your service by the purchased period when the service is about to expire.

10. Confirm the product details and click Buy Now.
11. Confirm the order details and click Pay Now.
12. On the payment page, select a payment method and pay for your order.

Buying a WAF Instance Billed on a Pay-per-use Basis

1. Log in to the management console.
2. Click in the upper left corner of the management console and select a region or project.
3. Click in the upper left corner and choose Web Application Firewall under Security.
4. In the upper right corner of the page, click Buy WAF.
5. On the Buy Web Application Firewall page, select Pay-per-use for Billing Mode.
   Figure 3 Pay-per-use
   

6. In the lower right corner of the page, click Next.
7. Click Back to Website Settings and add domain names of websites to be protected.
   

   If you want to disable WAF, choose Instance Management > Product Details, and click Disable Pay-Per-Use Billing next to Cloud Mode.

Verification

Your WAF instance is purchased when your instance edition and its remaining validity days are shown in the upper right corner of the management console.