Help Center/
Web Application Firewall/
FAQs/
Protection Rules/
How Do I Allow Requests from Only IP Addresses in a Specified Geographical Region?
Updated on 2025-01-17 GMT+08:00
How Do I Allow Requests from Only IP Addresses in a Specified Geographical Region?
If you allow only IP addresses in a region to access the protected domain name, for example, only IP addresses from Shanghai can access the protected domain name, take the following steps:
Geolocation access control rules have higher priority than built-in WAF rules. If you configure a geolocation access control rule to allow IP addresses from a certain location, WAF then forwards traffic from those IP addresses without performing basic web protection checks.
- Log in to the management console.
- Click
in the upper left corner of the management console and select a region or project. - Click
in the upper left corner and choose Web Application Firewall under Security & Compliance. - In the navigation pane on the left, choose Policies.
- Click the name of the target policy to go to the protection configuration page.
- In the upper left corner above the Geolocation Access Control list, click Add Rule.
- Add a geolocation access control rule: Select Shanghai for Geolocation and select Allow for Protective Action.
Figure 1 Selecting Allow for Protective Action
- In the upper left corner above the Precise Protection rule list, click Add Rule. Configure a precise protection rule to block all requests.
Figure 2 Blocking all access requests
Parent topic: Protection Rules
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
The system is busy. Please try again later.
For any further questions, feel free to contact us through the chatbot.
Chatbot
