User-Agent ACL

You can configure a User-Agent access control list (ACL) for your domain name to identify and filter visitors and enhance domain name security.

You can configure a User-Agent blacklist or whitelist to filter requests to your domain name based on the User-Agent field.

Blacklist: Requests including fields in the blacklist cannot access the content and 403 will be returned.
Whitelist: Only requests including fields in the whitelist can access the content. Other requests will fail and 403 will be returned.

Log in to Huawei Cloud console. Choose Service List > Content Delivery & Edge Computing > Content Delivery Network.
The CDN console is displayed.
In the navigation pane, choose Domains.
In the domain list, click the target domain name or click Configure in the Operation column.
Click the Access Control tab.
In the User-Agent Access Control area, click Edit. The Configure User-Agent Access Control dialog box is displayed.
Figure 1 Configuring a User-Agent ACL

Select a type and enter rules.

Parameter	Description
Type	Blacklist: Requests including fields in the blacklist cannot access the content. 403 is returned. Whitelist: Only requests including fields in the whitelist can access the content. Other requests will fail and 403 will be returned.
Rule	Enter letters, digits, spaces, and the following special characters: .-_();,/'#!@$^&+=~?"[] NOTE: For domain names with special configurations, () or [] must be both entered. Only wildcard characters () can be used for regular expression matching. If no wildcard character is included, exact matching will be used. Enter up to 100 characters for a rule. Enter up to 10 rules, and enter them at separate rows.

Parameter

Description

Type

Blacklist: Requests including fields in the blacklist cannot access the content. 403 is returned.
Whitelist: Only requests including fields in the whitelist can access the content. Other requests will fail and 403 will be returned.

Rule

Enter letters, digits, spaces, and the following special characters: *.-_();,/'#!@$^&+=~?"[]
NOTE:

For domain names with special configurations, () or [] must be both entered.
Only wildcard characters (*) can be used for regular expression matching. If no wildcard character is included, exact matching will be used.
Enter up to 100 characters for a rule.
Enter up to 10 rules, and enter them at separate rows.

Click OK.
(Optional) Disable the User-Agent ACL.
- Switch off Status to disable the User-Agent ACL and clear all settings of the blacklist or whitelist. You need to set related parameters when enabling this function again.

Assume that you have configured the following User-Agent blacklist for domain name www.example.com:

If User-Agent in the header of an HTTP request is one of the following:

User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; Touch; rv:11.0) like Gecko

user-agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/95.0.4638.54 Safari/537.36

Trident or Chrome is included in the blacklist, so 403 is returned.

Parent topic: Access Control

Thank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel

For any further questions, feel free to contact us through the chatbot.