Help Center/ Anti-DDoS Service/ FAQs/ AAD FAQs/ Access Configuration/ How Do I Change the Exposed IP Address of an Origin Server?
Updated on 2024-07-03 GMT+08:00

How Do I Change the Exposed IP Address of an Origin Server?

Scenarios

If the origin server is still under attacks even after AAD is configured, change the IP address of the origin server because it has been exposed.

This topic uses the EIP of an ECS as an example to describe how to change the origin server IP address.

Typical causes

  • If the IP address of an origin server has been attacked by hackers before the AAD service is configured, the origin server IP address has been exposed to attackers.
  • Some attackers may record the IP addresses used by exposed origin servers. Even after AAD is configured, the attackers will bypass AAD and directly launch attacks towards the known IP addresses. In this case, it is best practice to change the IP addresses of the origin servers.
Figure 1 Typical causes

Solution

An ECS is used as an example. If the EIP of the ECS is exposed, you can reassign an unexposed EIP to the ECS to change the IP address of the origin server.

Figure 2 Mechanism

Procedure

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. Click in the upper left corner of the management console and choose Networking > Virtual Private Cloud.
  4. In the navigation pane on the left, choose Elastic IP and Bandwidth > EIPs. The EIPs page is displayed.
  5. Locate the row containing the target EIP and click Unbind in the Operation column.
  6. Click OK.
  7. Assign another IP address for the ECS. Locate the row containing the target EIP and click Bind in the Operation column.
  8. Select the desired instance.
  9. Click OK.