How Do I Configure My Server to Allow Only Requests from WAF?
You can configure an access control rule on the origin server to allow only WAF back-to-source IP addresses to access the origin server. This prevents hackers from bypassing WAF to attack the origin server through origin server IP addresses, ensuring the security, stability, and availability of the origin server.
- Configure an access control policy on the origin server to whitelist the WAF IP addresses. For details, see How Do I Whitelist IP Address Ranges of Cloud WAF?.
- Disable other firewalls and security software on origin servers.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.