Alibaba Cloud Content Delivery Network (CDN) integrates with Anti-DDoS to mitigate DDoS attacks for accelerated domain names. This topic describes how to set parameters in the Alibaba Cloud CDN console to integrate Alibaba Cloud CDN with Anti-DDoS.

Prerequisites

An Anti-DDoS instance is created. You can purchase Anti-DDoS instances in the Anti-DDoS console.

Background information

You can use this feature if you require content delivery acceleration and DDoS mitigation at the same time. After this feature is activated, when attacks are detected, traffic of your workloads is automatically redirected from Alibaba Cloud CDN to Anti-DDoS.

This feature is available in public preview and primarily targeted at users in the finance, retail, transportation, media, and government sectors. You can join the DingTalk group 32615821 to request support.

This feature can be applied in scenarios including but not limited to the following:
  • Finance

    Ensures the high availability (HA) of services and improves the experience of users across countries. Protects user information, transactions, and data assets to minimize the risk of great loss caused by attacks.

  • Retail

    Accelerates the delivery of website content and services of e-commerce and ticketing platforms and collaborative software. Mitigates attacks to ensure the availability of services.

  • Media

    Accelerates the delivery of media content. Provides protection to avoid service disruptions caused by workload spikes or attacks.

Procedure

  1. Log on to the Alibaba Cloud CDN console.
  2. In the left-side navigation pane, click Domain Names.
  3. On the Domain Names page, find the target domain name and click Manage.
  4. Choose Security Settings > DDoS Interaction.

    If this feature is not activated under your account, click Activate Now to join the DingTalk group to request support.

  5. Turn on the Anti-DDoS Interaction switch.
  6. Set the Associated Anti-DDoS Service, Association Type, and Target parameters.
    Integrate CDN with Anti-DDoS
    Note This message may appear: No Anti-DDoS Pro/Premium settings are found for the specified domain name.
    • If you have not purchased any Anti-DDoS instance, you must purchase an Anti-DDoS instance in the Anti-DDoS console.
    • If you have already purchased an Anti-DDoS instance, you must configure the Anti-DDoS instance in the Anti-DDoS console to have your domain name protected.
  7. Click OK.

Result

On the DDoS Interaction tab, check whether the settings are effective.ddos-2