Enabling EIP Protection
If EIP protection is not enabled, your service traffic will not be filtered by CFW.
To use CFW to protect traffic, after you enable protection, you also need to configure access control policies or enable IPS. For details about how to configure access control policies, see Adding a Protection Rule. For details about IPS, see Configuring Intrusion Prevention Policies.
This section describes how to synchronize EIP information and enable EIP protection.
Constraints
- Currently, IPv6 addresses cannot be protected.
- An EIP can only be protected by one firewall.
- Only EIPs in the enterprise project to which the current account belongs can be protected.
Procedure
- Log in to the management console.
- Click in the upper left corner of the management console and select a region or project.
- In the navigation pane on the left, click and choose . The Dashboard page will be displayed.
- (Optional) Switch firewall instance: Select a firewall from the drop-down list in the upper left corner of the page.
- In the navigation pane, choose . The EIPs page is displayed. The EIP information is automatically updated to the list.
- Enable EIP protection.
- Enable protection for a single EIP: In the row of the EIP, click Enable Protection in the Operation column.
- Enable protection for multiple EIPs: Select the EIPs that you want to enable protection and click Enable Protection above the list.
- Currently, IPv6 addresses cannot be protected.
- An EIP can only be protected by one firewall.
- Only EIPs in the enterprise project to which the current account belongs can be protected.
- On the page that is displayed, check the information and click Bind and Enable. Then the Protection Status changes to Protected.
After EIP protection is enabled, the default action of the access control policy is Allow.
Follow-up Operations
After EIP protection is enabled, the default action is Allow. CFW will block traffic based on your protection policy.
- To configure a protection rule, see Adding a Protection Rule.
- To configure basic protection, see Configuring Intrusion Prevention Policies.
Related Operations
- To disable an EIP, click Disable Protection in the column of the EIP.
- To disable multiple EIPs, select them and click Disable Protection above the table.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot