Help Center/ Anti-DDoS Service/ User Guide/ CNAD Advanced Operation Guide/ Purchasing a CNAD Instance
Updated on 2024-09-26 GMT+08:00
View PDF
Share

Purchasing a CNAD Instance

To enable CNAD protection, you need to purchase CNAD instances. CNAD takes effect immediately after you purchase it.

CNAD has two editions: CNAD Unlimited Protection Basic and CNAD Unlimited Protection Advanced. You can choose an edition based on your service requirements. For details about the specifications of each edition, see Functions.

Prerequisites

You have applied for using the corresponding service edition.

Go to the Buy AAD page, set Instance Type to Cloud Native Anti-DDoS Advanced, and select the specifications.

Specifications Restrictions

The Unlimited Protection Advanced edition can protect only exclusive EIPs. You can submit a work order to the Anti-DDoS Service team to obtain the permission to purchase exclusive EIPs.

Constraints

Ensure that the account used for purchasing CNAD instances has both the CNAD FullAccess and BSS Administrator roles or has the Tenant Administrator role.

Purchasing Unlimited Protection Basic Edition

  1. Log in to the management console.
  2. Select a region in the upper part of the page, click in the upper left corner of the page, and choose Security & Compliance > Anti-DDoS Service. The Anti-DDoS Service Center page is displayed.
  3. In the upper right corner of the page, click Buy CNAD Pro.
  4. Set instance Type to Native DDoS Protection.
  5. Region: Select Chinese mainland.
  6. Set Protection Level to Unlimited Protection Basic Edition.
  7. Set the specifications parameters, as shown in Figure 1. Table 1 describes the parameters.

    Figure 1 Setting Unlimited Protection Basic edition specifications
    Table 1 Parameters of Unlimited Protection Basic Edition

    Parameter

    Description

    Region

    Unlimited Protection Basic Edition is available only in the Chinese mainland.

    Resource Location

    Select the region where the protected resources are located.

    NOTICE:

    CNAD instances can only protect cloud resources in the same region. Cross-region protection is not supported. For example, a CNAD instance in CN East-Shanghai1 can protect only cloud resources in CN East-Shanghai1.

    Protected IP Addresses

    A maximum of 50 IP addresses can be protected by default. Every five IP addresses can be added each time, and a maximum of 500 IP addresses can be added.

    Service Bandwidth

    The service bandwidth indicates clean service bandwidth forwarded to the origin server from the AAD scrubbing center.

  8. Set Instance Name, Required Duration, and Quantity. In the lower right corner of the page, click Next.

    The Auto-renew option enables the system to renew your service by the purchased period when the service is about to expire.

  9. On the confirmation page, confirm your order and click Submit Order.
  10. On the Pay page, click Pay.

    After the payment is successful, the newly bought instance will be displayed on the instance list. After the instance status becomes Normal, the instance is created.

Purchasing Unlimited Protection Advanced Edition

Before purchasing the advanced edition, you should konw that the Unlimited Protection Advanced edition can protect only exclusive EIPs.

  1. Log in to the management console.
  2. Select a region in the upper part of the page, click in the upper left corner of the page, and choose Security & Compliance > Anti-DDoS Service. The Anti-DDoS Service Center page is displayed.
  3. In the upper right corner of the page, click Buy CNAD Pro.
  4. Set instance Type to Native DDoS Protection.
  5. Select a region where the resources to be protected are located.
  6. Select Unlimited Protection Advanced Edition for Protection Level.
  7. Set the specifications parameters. Table 2 describes related parameters.

    Figure 2 Setting specifications of the Unlimited Protection Advanced edition
    Table 2 Parameters of Unlimited Protection Advanced Edition

    Parameter

    Description

    Region
    • Chinese Mainland: applies to scenarios where service servers are deployed in Chinese mainland (cross-region deployment is supported). Only dynamic BGP EIPs are supported.
    • Outside the Chinese mainland: applies to scenarios where the service server is deployed in the Asia Pacific region (Hong Kong is supported currently). Only premium BGP EIPs are supported.

    Resource Location

    Select the region where the protected resources are located.

    NOTICE:

    CNAD instances can only protect cloud resources in the same region. Cross-region protection is not supported. For example, a CNAD instance in CN East-Shanghai1 can protect only cloud resources in CN East-Shanghai1.

    Protected IP Addresses

    A maximum of 50 IP addresses can be protected by default. Every five IP addresses can be added each time, and a maximum of 500 IP addresses can be added.

    Service Bandwidth

    The service bandwidth indicates clean service bandwidth forwarded to the origin server from the AAD scrubbing center.

    Value range: 100 Mbit/s to 40,000 Mbit/s

  8. Set Instance Name, Required Duration, and Quantity. In the lower right corner of the page, click Next.

    The Auto-renew option enables the system to renew your service by the purchased period when the service is about to expire.

  9. On the confirmation page, confirm your order and click Submit Order.
  10. On the Pay page, click Pay.

    After the payment is successful, the newly bought instance will be displayed on the instance list. After the instance status becomes Normal, the instance is created.

Purchasing Cloud Native Anti-DDoS 2.0

  1. Log in to the management console.
  2. Select a region in the upper part of the page, click in the upper left corner of the page, and choose Security & Compliance > Anti-DDoS Service. The Anti-DDoS page is displayed.
  3. In the upper right corner of the page, click Buy CNAD Pro.
  4. Set instance Type to Native DDoS Protection.
  5. Select a region where the resources to be protected are located.

    Cloud Native Anti-DDoS 2.0 outside the Chinese mainland can only protect premium BGP IP addresses 49.0.236.0/22, 49.0.234.0/23, and 49.0.233.0/24.

  6. For Protection Level, select Cloud Native Anti-DDoS 2.0.
  7. Set the specifications parameters by referring to Table 3.

    Figure 3 Cloud Native Anti-DDoS 2.0
    Table 3 Parameter description

    Parameter

    Description

    Protected IP Addresses

    The value ranges from 50 to 1000, and the number of protected IP addresses must be a multiple of 50.

    Billing Mode for Public Network Lines

    Select one based on site requirements.

    • Yearly/Monthly: Your subscription fee is billed according to the selected payment cycle, requiring prepayment for the chosen duration. This mode is supported only in the Chinese mainland.
    • Pay-per-use: Charges are incurred daily based on the volume of clean traffic.

    Service Bandwidth

    This parameter is displayed only when you select Yearly/Monthly for Billing Mode for Public Network Lines.

    Metering Rule

    This parameter is displayed only when you select Pay-Per-Use for Billing Mode for Public Network Lines.

    Clean traffic refers to normal service traffic that is not polluted by attacks, excluding attack traffic.

  8. Set Instance Name, Required Duration, and Quantity. In the lower right corner of the page, click Next.

    The Auto-renew option enables the system to renew your service by the purchased period when the service is about to expire.

  9. On the confirmation page, confirm your order and click Submit Order.
  10. On the Pay page, click Pay.

    After the payment is successful, the newly bought instance will be displayed on the instance list. After the instance status becomes Normal, the instance is created.