Step 2: Configure a Load Balancer

To ensure your dedicated WAF instance reliability, after you add a website to it, use Elastic Load Balance (ELB) to configure a load balancer and a health check for the dedicated WAF instance.

Prerequisites

You have added a website to a dedicated WAF instance.
You have created a load balancer.
Related ports have been enabled in the security group to which the dedicated WAF instance belongs.
You can configure your security group as follows:
- Inbound rules
  Add an inbound rule to allow incoming network traffic to pass through over a specified port based on your service requirements. For example, if you want to allow access from port 80, add a rule that allows TCP and port 80.
- Outbound rules
  Retain the default settings. All outgoing network traffic is allowed by default.

Impact on the System

If you select Weighted round robin for Load Balancing Algorithm, disable Sticky Session. If you enable Sticky Session, the same requests will be forwarded to the same dedicated WAF instance. If this instance becomes faulty, an error will occur when the requests come to it next time.

Procedure

Log in to the management console.
Click in the upper left corner of the management console and select a region or project.
Click in the upper left corner of the page and choose Elastic Load Balance under Network to go to the ELB console.
Click the name of the load balancer you want in the Name column to go to the Basic Information page.
Click the Listeners tab, click Add Listener, and configure the listener information.
Click Next: Configure Request Routing Policy.

If you select Round robin for Load Balancing Algorithm, disable Sticky Session. If you enable Sticky Session, the same requests will be forwarded to the same dedicated WAF instance. If this instance becomes faulty, an error will occur when the requests come to it next time.
Click Next: Add Backend Server, add an ECS, and configure the health check.
Click Next: Confirm.
Click Submit.
Go to the page of the added listener, select the Backend Server Groups tab, and click Add.
In the Add Backend Server dialog box, select the dedicated WAF instance you have created.
Click Next and configure a port for the dedicated engine.

The listening port of the dedicated WAF instance must be the same as that configured in Step 1: Add a Website to WAF. If you configure a standard port for the website, set the HTTP listening port to 80 and HTTPS listening port to 443.
Click Finish.

Verification

If the Health Check Result is Healthy, the load balancer is configured.

Parent topic: Connecting a Website to WAF

Previous topic: Step 1: Add a Website to WAF

Next topic: Step 3: Bind an EIP to a Load Balancer

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel

For any further questions, feel free to contact us through the chatbot.

Chatbot