- What's New
- Function Overview
- Service Overview
- Getting Started
-
User Guide
- Creating a User Group and Granting Permissions
- Checking the Dashboard
- Purchasing and Changing the Specifications of CFW
- Enabling Internet Border Traffic Protection
- Enabling VPC Border Traffic Protection
-
Configuring Access Control Policies to Control Traffic
- Access Control Policy Overview
- Configuring Protection Rules to Block or Allow Traffic
- Adding Blacklist or Whitelist Items to Block or Allow Traffic
- Viewing Protection Information Using the Policy Assistant
- Managing Access Control Policies
- Managing IP Address Groups
- Domain Name Management
- Service Group Management
- Attack Defense
- Viewing Traffic Statistics
- Viewing CFW Protection Logs
- System Management
- Viewing Audit Logs
- Viewing Monitoring Metrics
-
Best Practices
- CFW Best Practice Summary
- Purchasing and Querying CFW via API
- Migrating Security Policies to CFW in Batches
- Configuration Suggestions for Using CFW with WAF, Advanced Anti-DDoS, and CDN
- Allowing Internet Traffic Only to a Specified Port
- Allowing Outbound Traffic from Cloud Resources Only to a Specified Domain Name
- Using CFW to Defend Against Network Attacks
-
API Reference
- Before You Start
- API Overview
- API Calling
-
API
- Domain Name Management
- VPC Protection
- Rule Hit Count
- IPS Switch Management
- East-west Protection
- ACL Rule Management
- Blacklist and Whitelist Management
- Log Query Management
- Protection Mode Management
- Cloud Firewall Information Management
- Service Group Management
- Service Group Member Management
- EIP Management
- Address Group Member Management
- Address Group Management
- Appendix
- Change History
- SDK Reference
-
FAQs
-
About the Product
- Does CFW Support Off-Cloud Servers?
- Can CFW Be Shared Across Accounts?
- What Are the Differences Between CFW and WAF?
- What Are the Differences Between CFW, Security Groups, and Network ACLs?
- How Does CFW Control Access?
- What Are the Priorities of the Protection Settings in CFW?
- Can WAF and CFW Be Deployed Together?
- How Long Are CFW Logs Stored by Default?
- Regions and AZs
- Troubleshooting
-
Network Traffic
- How Do I Calculate the Number of Protected VPCs and the Peak Protection Traffic at the VPC Border?
- How Does CFW Collect Traffic Statistics?
- What Is the Protection Bandwidth Provided by CFW?
- What Do I Do If My Service Traffic Exceeds the Protection Bandwidth?
- What Are the Differences Between the Data Displayed in Traffic Trend Module and the Traffic Analysis Page?
- How Do I Verify the Validity of an Outbound HTTP/HTTPS Domain Protection Rule?
- Billing
-
About the Product
- Videos
Show all
What's New
The following tables describe the features released in each CFW version and corresponding documentation updates.
November 2023
|
No. |
Feature |
Description |
Phase |
Document |
|---|---|---|---|---|
|
1 |
Optimized Dashboard page |
Optimized the display of traffic statistics and added traffic trends on the Dashboard page. |
Commercial use |
|
|
2 |
Domain group protection |
A domain name group is a collection of multiple domain names or wildcard domain names. You can configure domain name groups to protect domains in batches. |
Commercial use |
|
|
3 |
Policy assistant |
You can use the policy assistant to quickly check protection rule hits and adjust rules in a timely manner. |
Commercial use |
|
|
4 |
Sensitive directory scan defense |
Defend against scan attacks on sensitive directories in real time. |
Commercial use |
|
|
5 |
Reverse shell defense |
Defend against reverse shells. |
Commercial use |
|
|
6 |
Supported security dashboard |
The security dashboard displays the high-frequency attacks blocked by IPS. You can check the IPS defense status and adjust IPS defense actions in a timely manner. |
Commercial use |
|
|
7 |
Optimized traffic analysis page |
Added visualized information about top N inbound, outbound, and inter-VPC traffic statistics on the traffic analysis page. |
Commercial use |
|
|
8 |
Supported alarm notification |
CFW interconnects with Simple Message Notification (SMN) to send IPS attack logs and excessive traffic warning through the notification method (email or SMS) you set. |
Commercial use |
December 2022
|
No. |
Feature |
Description |
Phase |
Document |
|---|---|---|---|---|
|
1 |
CFW OBT test |
Launched the first open beta test (OBT). |
Open beta test |
- |
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.
