Enabling EIP Protection

If EIP protection is not enabled, your service traffic will not be filtered by CFW.

To use CFW to protect traffic, after you enable protection, you also need to configure access control policies or enable IPS. For details about how to configure access control policies, see Adding a Protection Rule. For details about IPS, see Configuring Intrusion Prevention Policies.

This section describes how to synchronize EIP information and enable EIP protection.

Constraints

Currently, IPv6 addresses cannot be protected.
An EIP can only be protected by one firewall.
Only EIPs in the enterprise project to which the current account belongs can be protected.

Procedure

Log in to the management console.
Click in the upper left corner of the management console and select a region or project.
In the navigation pane on the left, click and choose Security & Compliance > Cloud Firewall. The Dashboard page will be displayed.
(Optional) If the current account has only one firewall instance, the firewall details page is displayed. If there are multiple firewall instances, click View in the Operation column to go to the details page.
In the navigation pane, choose Assets > EIPs. The EIP page is displayed. The EIP information is automatically updated to the list.

Enable EIP protection.
- Enable protection for a single EIP. In the row of the EIP, click Enable Protection in the Operation column.
- Enable protection for multiple EIPs. Select the EIPs to be protected and click Enable Protection above the table.
- Currently, IPv6 addresses cannot be protected.
- An EIP can only be protected by one firewall.
- Only EIPs in the enterprise project to which the current account belongs can be protected.
On the page that is displayed, check the information and click Bind and Enable. Then the Protection Status changes to Protected.

After EIP protection is enabled, the default action of the access control policy is Allow.

Follow-up Operations

After EIP protection is enabled, the default action is Allow. CFW will block traffic based on your protection policy.

To configure a protection rule, see Adding a Protection Rule.
To configure basic protection, see Configuring Intrusion Prevention Policies.

Related Operations

Disabling EIP protection

To disable an EIP, click Disable Protection in the Operation column of the EIP.
To disable multiple EIPs, select them and click Disable Protection above the table.

Parent topic: Managing EIP Protection

Previous topic: Managing EIP Protection

Next topic: Viewing EIP Information

Feedback

Was this page helpful?

Helpful Not helpful

Provide feedback

Thank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.

The system is busy. Please try again later.

Which of the following issues have you encountered?

Content is inconsistent with the product UI

Unclear descriptions

Lack of examples or code

Incorrect steps

Can't find what I need

Lack of best practices

Feedback (optional)

0/500

Select at least one type of issue, and enter your comments or suggestions.

Enter a maximum of 500 characters.

Submit Cancel

For any further questions, feel free to contact us through the chatbot.

Chatbot