How Many Rules Can I Add to a WAF Instance?
The number of rules that you can add varies depending on the protection types in the WAF edition you are using. Table 1 lists the specifications included in different editions.
Service Scale |
Standard |
Professional |
Platinum |
Cloud Mode (Pay-Per-Use Billing) |
Dedicated Mode |
---|---|---|---|---|---|
Peak rate of normal service requests |
|
|
|
WAF-to-Server connections: 6,000 per domain name |
The following lists the specifications of a single instance.
NOTICE:
Maximum QPS values are for your reference only. They may vary depending on your businesses. The real-world QPS is related to the request size and the type and quantity of protection rules you customize. |
Service bandwidth threshold (The origin server is deployed on the cloud.) |
100 Mbit/s |
200 Mbit/s |
300 Mbit/s |
N/A |
|
Service bandwidth threshold (The origin server is not deployed on Huawei Cloud.) |
30 Mbit/s |
50 Mbit/s |
100 Mbit/s |
N/A |
N/A |
Number of domains |
10 (Supports one top-level domain name.) |
50 (Supports five top-level domain names.) |
80 (Supports eight top-level domain names.) |
30 (Supports three top-level domain names.) |
2,000 (Supports 2,000 top-level domain names) |
Back-to-source IP address quantity (the number of WAF back-to-source IP addresses that can be allowed by a protected domain name) |
20 |
50 |
80 |
20 |
N/A |
Quantity of supported ports
NOTE:
If you are using a professional or platinum cloud WAF instance, you can configure any non-standard ports for your protected website. To do so, submit a ticket to enable customized non-standard ports. |
|
|
|
N/A |
|
Peak rate of CC attack defense |
100,000 QPS |
200,000QPS |
1,000,000 QPS |
N/A |
|
Number of CC attack defense rules |
20 |
50 |
100 |
200 |
100 |
Number of precise protection rules |
20 |
50 |
100 |
200 |
100 |
Number of reference table rules |
N/A |
50 |
100 |
200 |
100 |
Number of IP address blacklist or whitelist rules |
1,000 |
2,000 |
5,000 |
200 |
1,000 |
Number of geolocation access control rules |
N/A |
50 |
100 |
200 |
100 |
Number of web tamper protection rules |
20 |
50 |
100 |
200 |
100 |
Website anti-crawler protection |
N/A |
50 |
100 |
200 |
100 |
Number of information leakage prevention rules |
N/A |
50 |
100 |
200 |
100 |
Global protection whitelist rules |
1,000 |
1,000 |
1,000 |
2,000 |
1,000 |
Number of data masking rules |
20 |
50 |
100 |
200 |
100 |
Security report templates |
5 |
10 |
20 |
- |
20 |
About Purchase and Specifications Change FAQs
- Can I Buy Multiple WAF Instances Using the Same Account?
- What Are the Differences Between the Permissions of an Account and Those of IAM Users?
- Can I Share My WAF with Other Accounts?
- How Does WAF Calculate Domain Name Quota Usage?
- How Do I Change the WAF Instance Edition to a Lower One and Reduce Number of Packages?
- Can I Add More Protection Rules?
- What Can I Do If the Website Traffic Exceeds the WAF Service Request Limit?
- What Are the Impacts When QPS Exceeds the Allowed Peak Rate?
- Can I Change WAF Specifications During Renewal?
- How Many Rules Can I Add to a WAF Instance?
- Where and When Can I Buy a Domain, QPS, or Rule Expansion Package?
- How Do I Select Service QPS When Purchasing WAF?
- Is Service QPS Calculated Based on Incoming Traffic or Outgoing Traffic?
- Does WAF Have a Limit on the Protection Bandwidth or Shared Bandwidth?
- Where Can I View the Inbound and Outbound Bandwidths of a Protected Website?
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbotmore