You can upgrade the edition of your Web Application Firewall (WAF) instance. You can also upgrade or downgrade the specifications of value-added services that you purchased. This topic describes how to upgrade or downgrade a WAF instance.
Upgrade a WAF instance
Supported upgrade operations
Upgrade the edition of your WAF instance
You can upgrade the edition of your WAF instance. WAF 3.0 has the following editions: Basic, Pro, Enterprise, and Ultimate. The editions are listed in ascending order based on protection capabilities.
Purchase value-added services
You can purchase the following value-added services: hybrid cloud protection, bot management for web application protection, bot management for app protection, API security, extended queries per second (QPS), burstable QPS (pay-as-you-go), extra domains, exclusive IP addresses, intelligent load balancing, and Simple Log Service.
Upgrade value-added services
You can upgrade the following specifications of value-added services that you purchased: the number of additional protection nodes, extended QPS, the threshold of burstable QPS (pay-as-you-go), the number of extra domains, the number of exclusive IP addresses, and log storage capacity.
Billing rules
You are charged for upgrading the specifications of value-added services. New specifications immediately take effect.
On the WAF 3.0 (Subscription) | Upgrade/Downgrade page in the WAF console, you can view the fees that are charged when you upgrade the specifications.
Procedure
Log on to the WAF 3.0 console. In the top navigation bar, select the resource group and the region in which the WAF instance is deployed. You can select Chinese Mainland or Outside Chinese Mainland.
In the left-side navigation pane, click Overview.
In the Protected Assets section of the Overview page, click Upgrade Now.
NoteTo upgrade the specifications of your WAF instance, you can also click Upgrade below Intelligent Load Balancing or Resize below Protected Domain Names, Clean QPS, or Exclusive IP Addresses.
On the WAF 3.0 (Subscription) Upgrade/Downgrade page, configure the parameters, read and select Web Application Firewall Terms of Service, and then click Buy Now to complete the payment.
Downgrade a WAF instance
Supported downgrade operations
Downgrade value-added services
You can downgrade the following specifications of value-added services: extended QPS, the threshold of burstable QPS (pay-as-you-go), the number of extra domains, the number of exclusive IP addresses, and log storage capacity.
Disable value-added services
You can submit a ticket to disable the following value-added services: bot management for web application protection, bot management for app protection, and API security.
Billing rules
You are refunded for downgrading the specifications of value-added services. For information about how refund fees are calculated, see Rules for unsubscribing from resources.
Refunded fees = Paid amount - Fees for consumed resources. Fees for consumed resources = Usage duration (days) × Daily unit price × 1.5.
Procedure
You can downgrade the specifications of value-added services or disable value-added services once a month.
Log on to the WAF 3.0 console. In the top navigation bar, select the resource group and the region in which the WAF instance is deployed. You can select Chinese Mainland or Outside Chinese Mainland.
In the left-side navigation pane, click Overview.
In the Protected Assets section of the Overview page, click More, and then click Downgrade.
On the WAF 3.0 (Subscription) | Downgrade page, configure the parameters, read and select Web Application Firewall Terms of Service, and then click Buy Now to complete the payment.
ImportantWhen you downgrade your WAF instance, take note of the following items:
The value of the Extra Domains or Exclusive IP Address parameter must be greater than or equal to the number of extra domain names or exclusive IP addresses that you used. For example, you purchased a subscription WAF instance of the Pro edition, which allows you to add five domain names to WAF free of charge, and you purchased 10 extra domains. If you added seven domain names to WAF, you can set the Extra Domains parameter to 2 or a value that is greater than 2.
If you specify a smaller value for the Extended QPS or Threshold of Burstable QPS (Pay-as-you-go) parameter, your WAF instance may be added to a sandbox. We recommend that you do not downgrade the extended QPS or burstable QPS specifications of your WAF instance unless necessary. For more information, see The sandbox feature.
If the log storage usage reaches the upper limit, WAF logs are no longer written. We recommend that you do not reduce the log storage capacity of your WAF instance unless necessary.
To disable bot management for web application protection, bot management for app protection, or API security, submit a ticket.