Enabling EIP Protection

Constraints

Currently, IPv6 addresses cannot be protected.

Procedure

1. Log in to the management console.
2. Click in the upper left corner of the management console and select a region or project.
3. In the navigation pane, click and choose Security & Compliance > Cloud Firewall. The Dashboard page will be displayed, as shown in Figure 1.
   Figure 1 CFW Dashboard
   

4. (Optional) If the current account has only one firewall instance, the firewall details page is displayed. If there are multiple firewall instances, click View in the Operation column to go to the details page.
5. In the navigation pane, choose Assets > EIPs. The EIP page is displayed. The EIP information is automatically updated to the list. See Figure 2.

   (Optional) Manually refresh the list. Click Synchronize EIP in the upper right corner of the page to import your EIP information to the list and refresh the EIP list.

   Figure 2 EIPs
   
   

   Currently, IPv6 addresses cannot be protected.

6. Enable EIP protection.
   • Enable protection for a single EIP. In the row of the EIP, click Enable Protection in the Operation column.
   • Enable protection for multiple EIPs. Select the EIPs to be protected and click Enable Protection above the table.

7. On the page that is displayed, check the information and click Bind and Enable. Then the Protection Status changes to Protected.
   

   After EIP protection is enabled, the default access control policy is Allow.

Follow-up Operations

After EIP protection is enabled, the default action is Allow. CFW will block traffic based on your protection policy.

• To configure a protection rule, see Adding a Protection Rule.
• To configure basic protection, see Configuring Intrusion Prevention Policies.

Related Operations