Web Application Firewall
Web Application Firewall (WAF) keeps web services stable and secure. It examines all HTTP and HTTPS requests to detect and block the following attacks: Structured Query Language (SQL) injection, cross-site scripting (XSS), webshells, command and code injections, file inclusion, sensitive file access, third-party vulnerability exploits, Challenge Collapsar (CC) attacks, malicious crawlers, and cross-site request forgery (CSRF).
Progressive Knowledge
WAF knowledge for users from beginner level to expert level
01
Understand
Understand the features and application scenarios of HUAWEI CLOUD WAF, helping you accurately match actual services, quickly connect your domain name to WAF, and efficiently migrate your services to HUAWEI CLOUD.
Service Overview
03
Start
After purchasing WAF, you can connect your website services to WAF (that is, enable protection by WAF), and configure protection policies based on your service scenario.
Enabling WAF Protection
Rule Configurations
05
Deploy
Best practices based on service scenarios and customer requirements help you quickly use WAF to protect your website.
Web Service Protection
02
Purchase
If the default domain quantity and bandwidth cannot meet your requirements, you can purchase a domain extension package and bandwidth expansion package.
Service Specification
Quick Config
04
Be a Power User
You can change specifications, add protected domain names, modify server configurations, and change protection rules at any time, based on service development requirements. In addition, you can view protection logs in real time and analyze protection event data to adjust protection policies in time and better protect your website services.
Common Operations
Rule Configurations
Policy Management
FAQs
Learn more about common issues and solutions.
Typical Cases
-
How Do I Troubleshoot 404/502/504 Errors?
-
How Can I Add a Domain Name?
-
How Do I Configure a CC Attack Protection Rule on WAF?
-
How Do I Configure the Client Protocol and Server Protocol?
-
How Do I Obtain the Real IP Address of a Web Visitor After WAF Is Enabled?
-
How Do I Route Traffic Through WAF?
-
What Are the Impacts If a Subdomain Name and TXT Record Are Not Configured?
-
How Do I Handle False Alarms on WAF?
-
Which Non-Standard Ports Does WAF Support?
-
How Do I Whitelist the WAF IP Address Ranges?
Domain Name Connection
-
How Can I Add a Domain Name?
-
How Do I Configure Domain Names to Be Protected When Adding Domain Names?
-
What Are the Precautions for Configuring Multiple IP Addresses for Backend Servers?
-
How Do I Configure the Client Protocol and Server Protocol?
-
How Do I Modify a Certificate?
-
How Do I Switch a Working Mode?
Product Consultation
