Web Application Firewall
- Release Notes and Announcements
- Product Announcement
- Security Advisory
- Product Introduction
- Purchase Guide
- Billing Overview
- Getting Started
- Operation Guide
- SaaS WAF Connection
- CLB WAF Connection
- Connect Via Instance Object
- Bot and Application Security
- Bot Settings
- Bot Management
- Bot Traffic Visibility
- Basic Security Configurations
- API Security Management
- Threat Operation
- Blocklist/Allowlist Protection Settings
- Statistics and Logs
- Practical Tutorial
- Bot Management
- API Security
- Integration
- API Documentation
- Making API Requests
- Asset Management APIs
- Protection Settings APIs
- Other APIs
- IP Management APIs
- Integration APIs
- Security Overview APIs
- FAQS
International
Last updated: 2024-09-05 16:18:56
Instance Package plan pricing
Product type | Edition | Price (USD/Month) | Remark |
SaaS WAF | Premium | 800 | AI Engine is disabled by default. If you purchase a plan that includes this feature and you need to use it, please contact us. To upgrade the plan of an instance, please go to Instance management. Downgrading the plan is not supported. |
| | Enterprise | 2180 |
| | Ultimate | 6380 |
| | Exclusive | |
CLB WAF | Premium | 800 | N/A |
| | Enterprise | 2180 |
| | Ultimate | 6380 |
| | Exclusive | |
Extended Configuration pricing
Extra domain packages
Specification | Price |
One extra domain package can be applied to up to ten domain names, including one domain name and nine subdomain names. | 285 USD/month |
Extra capacity packages
Specification | Price | Scope | |
Each extra QPS package provides 1,000 QPS. For SaaS WAF instances, the bandwidth cap increases by 25 Mbps. | 142 USD/month | | Existing WAF users before September 27, 2023 |
Each extra QPS package provides 1,000 QPS. For SaaS WAF instances, the bandwidth cap increases by 25 Mbps. | Premium | 350 USD/month | New WAF users since September 27, 2023 |
| Enterprise | 480 USD/month | |
| Ultimate | 600 USD/month | |
Add-on feature pricing
Mini Programs Security Acceleration
The billing for value-added feature of Mini Programs Security Acceleration consists of the mini program business extension package, elastic billing for mini programs, and mini program node extension package.
Note:
Currently, for non-mainland regions in China, only the Hong Kong (China) region supports the purchase and enabling of Mini Programs Security Acceleration. For other regions, users can apply for enabling the feature by submitting a ticket.
Mini Program Business Extension Package
Details of Mini Programs Security Acceleration Business Extension Package | Purchase Quantity | Fees |
Combining the access of Weixin Gateway, it supports WeChat mini programs' nearby security protection and dynamic acceleration capability, providing a unified security protection scheme for the mini program. Each mini program extension package includes 100 QPS and the corresponding access bandwidth of 2 Mbps. The Advanced Edition WAF instances with the feature enabled support the access of 3 mini programs by default. Editions later than the Advanced Edition support the access of 4 mini programs. To access more mini programs, you need to purchase the mini program node extension package. You can purchase up to 500 Mini Programs Security Acceleration extension packages at a time. If you require more packages, contact the business manager or us by submitting a ticket. | 1-4 (excluding 4) | 195 USD/package/month |
| 4-6 (excluding 6) | 185 USD/package/month |
| 6-10 (excluding 10) | 175 USD/package/month |
| 10-50 (excluding 50) | 165 USD/package/month |
| 50-100 (excluding 100) | 155 USD/package/month |
| 100-500 (excluding 500) | 135 USD/package/month |
| 500-1,000 (excluding 1,000) | 115 USD/package/month |
| 1,000 or more | 95 USD/package/month |
Elastic Billing for Mini Programs
When the peak QPS of the mini program with the Mini Programs Security Acceleration feature accessed exceeds the QPS specification value purchased by the instance mini program business extension package, the QPS specification of the mini program supporting protection can be further extended through enabling elastic billing.
Details of Elastic Billing for Mini Programs | Purchase Quantity | Fees |
The elastic scaling of Mini Programs Security Acceleration is suitable for traffic protection against inaccurate mini program business traffic evaluation, short-term business activities, and business peaks caused by unexpected access. Once it is enabled, postpaid protection is supported for the business beyond the prepaid mini program to avoid affecting the business or reducing the protection capability. | 0 - 5,001 QPS (excluding 5,001) | 0.19 USD/QPS/day |
| 5,001 - 10,001 QPS (excluding 10,001) | 0.17 USD/QPS/day |
| 10,001 - 50,001 QPS (excluding 50,001) | 0.15 USD/QPS/day |
| 50,001 - 100,001 QPS (excluding 100,001) | 0.13 USD/QPS/day |
| 100,001 QPS and above | 0.11 USD/QPS/day |
Mini Program Node Extension Package
If the number of mini programs to be accessed exceeds the supported limit of the instance version, purchasing the mini program node extension package is supported to further extend the number of mini programs for protection.
Details of Mini Program Node Extension Package | Fees |
The mini program node extension package is suitable for scenarios requiring the access of more mini programs for protection. Each purchased mini program node extension package supports the access of one mini program. | 28 USD/package/month |
Bot management
Description | Price |
Bot management can identify good bots and bad bots, and process the traffic according to the customized policies. For example, you can let through the traffic of search engine bots. For requests from malicious crawlers, you can choose to ignore them, delay the responses, or adopt different response time periods. This feature reduces resource consumption, information leakage, and failed marketing caused by malicious bots and crawlers on the one hand and ensures normal operations of friendly ones (such as search engine bots and advertising programs) on the other hand. | 2000 USD/instance/month |
Note****:
Activating the Bot management feature will increase the price of extra capacity package.
The unit price of the extra capacity package will be increased by 300 USD/package/month.
API security
With API security, you can configure policies to handle risks found based on collected API traffic data.
Product type | Edition | API security | Price (USD/Month) | Remark |
SaaS WAF | Premium | Enabled | 1890 | Advanced Vulnerability Protection (AI Engine) is disabled by default. If you purchase a plan that supports this feature and you need to use it, please contact us. To upgrade the plan of an instance, please go to Instance management. Downgrading the plan is not supported. |
| | Not enabled | 880 | |
| Enterprise | Enabled | 4500 | |
| | Not enabled | 2180 | |
| Ultimate | Enabled | 10650 | |
| | Not enabled | 6380 | |
| Exclusive | Enabled | | |
| | Not enabled | | |
CLB WAF | Premium | Enabled | 1890 | N/A |
| | Not enabled | 800 | |
| Enterprise | Enabled | 4500 | |
| | Not enabled | 2180 | |
| Ultimate | Enabled | 10650 | |
| | Not enabled | 6380 | |
| Exclusive | Enabled | | |
| | Not enabled | | |
Note
Activating the API security will increase the price of extra capacity package.
The unit price of the extra capacity package will be increased by 300 USD/package/month
Log storage packages
Specification | Price |
Each log storage package contains:
1 TB of log storage capacity. You can search for and download access logs of protected domain names within the configured log retention period (1–180 days). If the log size of the retention period exceeds the storage capacity, up to 1 TB of logs can be queried and downloaded. | 150 USD/month |
Note
The purchase quantity of log storage packages can be 2 to 500.
WAF allows you to add third-level and fourth-level domain names. These domain names count toward the subdomain name quota.
To disable an extra QPS package, please go to Renewals and cancel the renewal of the item.
To disable the auto-renewal of an extra domain package, contact us.
We recommend you purchase one log storage package for every 800 QPS per month.
Log shipping
The objective of the log delivery service is to record and deliver the logs generated by WAF (currently only supports the header fields of access logs) to the user's Tencent Cloud CLS service or Ckafka service.
Note
It's anticipated that by late January 2024, the log delivery functionality will be launched. Upon launch, purchases and normal billing will be supported, with specific release timing being broadcasted through onsite messaging notifications.
The utilization of the log delivery service requires the prior purchase of CLS or CKafka instances.
During the process of log storage and delivery, WAF will bill on the basis of the actual log volume, with the unit of measurement being GB;The billing cycle runs daily, and the charges for the day's usage will be billed and settled at 00:00 the following day. Currently, stair-step pricing based on users' actual usage is supported (this pricing does not include the cost of CLS or CKafka). The specific pricing is as follows, as indicated by the table below:
Daily Delivery Volume (GB) | Price (USD/GB/Day) |
0–30 GB (excluding 30 GB) | 0.006 |
30–100 GB (excluding 100 GB) | 0.005 |
100-500 GB (excluding 500 GB) | 0.004 |
500 GB and above | 0.003 |
Note
If abnormalities occur whilst using the log delivery service, please contact us for resolution.
The logs recorded by the log delivery service function are in an uncompressed format, hence the size of the WAF record values is different from the record values size on the CLS platform.
The log delivery service function does not conflict with the security services log package function, regardless of whether the security services log package is purchased, you can purchase and utilize the log delivery service.
Was this page helpful?
You can also Contact Sales or Submit a Ticket for help.
Yes
No