Help Center/
Web Application Firewall/
User Guide/
Connecting Your Website to WAF/
Recommended Configurations After Website Connection/
Configuring Request and Response Header Forwarding
Updated on 2025-10-20 GMT+08:00
Configuring Request and Response Header Forwarding
Prerequisites
The website to be protected has been added to WAF.
Constraints
- You can configure up to eight key/value pairs.
- Dots (.) cannot be specified in the for forwarding.
- The value can be set to a custom string or a variable starting with $. Variables starting with $ support only the following fields:
$time_local $request_id $connection_requests $tenant_id $project_id $remote_addr $remote_port $scheme $request_method $http_host $origin_uri $request_length $ssl_server_name $ssl_protocol $ssl_curves $ssl_session_reused
- Log in to the WAF console.
- Click
in the upper left corner and select a region or project. - (Optional) If you have enabled the enterprise project function, in the upper part of the navigation pane on the left, select your enterprise project from the Filter by enterprise project drop-down list. Then, WAF will display the related security data in the enterprise project on the page.
- In the navigation pane on the left, click Website Settings.
- On the Website Settings page, click the target website domain name.
- In the displayed dialog box, enter a key/value pair and click Add to add multiple fields.
Parent topic: Recommended Configurations After Website Connection
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.
The system is busy. Please try again later.
