Help Center> Cloud Firewall> Getting Started> Step 2: Enable EIP Protection
Updated on 2024-05-10 GMT+08:00
View PDF

Step 2: Enable EIP Protection

When you use CFW for the first time, you need to synchronize assets and enable protection for EIP assets so that your service traffic can pass through CFW.

After EIP protection is enabled, the default action of CFW is Allow. CFW will block traffic based on your protection policy.

Procedure

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. In the navigation pane on the left, click and choose Security & Compliance > Cloud Firewall. The Dashboard page will be displayed.
  4. (Optional) If the current account has only one firewall instance, the firewall details page is displayed. If there are multiple firewall instances, click View in the Operation column to go to the details page.
  5. In the navigation pane, choose Assets > EIPs. The EIP page is displayed. The EIP information is automatically updated to the list.
  1. Enable EIP protection.

    • Enable protection for a single EIP. In the row of the EIP, click Enable Protection in the Operation column.
    • Enable protection for multiple EIPs. Select the EIPs to be protected and click Enable Protection above the table.
    • Currently, IPv6 addresses cannot be protected.
    • An EIP can only be protected by one firewall.
    • Only EIPs in the enterprise project to which the current account belongs can be protected.

  2. On the page that is displayed, check the information and click Bind and Enable. Then the Protection Status changes to Protected.

    After EIP protection is enabled, the default action of the access control policy is Allow.