After you add a website to Anti-DDoS Pro, you must modify the DNS records of your website to reroute inbound traffic to the Anti-DDoS Pro instance. If you have purchased the paid edition of Alibaba Cloud DNS service for domain name resolution, you can enable NS Mode Access to automatically modify DNS records. This topic describes how to enable NS Mode Access in the Anti-DDoS Pro console.
Prerequisites
- An Anti-DDoS Pro instance is purchased.
Note Only Anti-DDoS Pro supports NS Mode Access. If you use Anti-DDoS Premium, we recommend that you modify the DNS records of websites. For more information, see Modify DNS records to protect websites.
- The domain name of your website is managed by the paid edition of Alibaba Cloud DNS. For more information, see Alibaba Cloud DNS product overview.
- A website is added to Anti-DDoS Pro or Anti-DDoS Premium. For more information, see Add a website.
- The back-to-origin IP addresses of instances are added to the whitelist of the origin server. If you deploy third-party security software on your origin server, such as a firewall, add the back-to-origin IP addresses to the whitelist of the security software. For more information, see Allow back-to-origin IP addresses to access the origin server.
- The traffic forwarding settings take effect. Before you switch service traffic to Anti-DDoS Pro or Anti-DDoS Premium, we recommend that you verify that the instances can forward inbound traffic to the origin server on your local machine. For more information, see Verify the forwarding configuration on your local machine.
Background information
- Anti-DDoS: enables Anti-DDoS Pro and automatically modifies DNS records to reroute
inbound traffic to the Anti-DDoS Pro instance.
- Back-To-Source: disables Anti-DDoS Pro and forwards the traffic to the origin server.
We recommend that you use the following steps to configure NS Mode Access. If the domain name of your website is managed by a third-party DNS service and cannot be migrated to Alibaba Cloud DNS, NS Mode Access is unavailable. In this case, you must manually modify the DNS records of your website. For more information, see Modify DNS records to protect websites.