Updated on 2024-12-05 GMT+08:00

Configuring Watermark Protection

CNAD supports the sharing of watermark algorithms and keys with the service end. All packets sent by the client are embedded with watermarks, which can effectively defend against layer-4 CC attacks.

Constraints

Up to two keys can be configured for a watermark.

Procedure

  1. Log in to the management console.
  2. Select a region in the upper part of the page, click in the upper left corner of the page, and choose Security & Compliance > Anti-DDoS Service. The Anti-DDoS Service Center page is displayed.
  3. In the navigation pane on the left, choose Cloud Native Anti-DDoS Advanced > Protection Policies. The Protection Policies page is displayed.
  4. Click Create Protection Policy.
  5. In the displayed dialog box, set the policy name, select an instance, and click OK.

    Figure 1 Creating a policy

  6. In the row containing the target policy, click Set Protection Policy in the Operation column.
  7. In the Watermark configuration area, click Set.

    Figure 2 Watermarking

  8. On the displayed Watermark Configuration page, click Create.
  9. In the Create Watermark dialog box, set watermark parameters.

    Figure 3 Create Watermark
    Table 1 Watermark parameters

    Parameter

    Description

    Watermark Name

    Watermark name

    Protocol

    Currently, only UDP is supported.

    Key

    Keyword. Up to two keywords are supported.

    Port Range

    The supported port number ranges from 1 to 65535.

  10. Click OK.

    For details about how to configure watermarks, see section Watermark Configuration Guide.