El contenido no se encuentra disponible en el idioma seleccionado. Estamos trabajando continuamente para agregar más idiomas. Gracias por su apoyo.

Compute
Elastic Cloud Server
Huawei Cloud Flexus
Bare Metal Server
Auto Scaling
Image Management Service
Dedicated Host
FunctionGraph
Cloud Phone Host
Huawei Cloud EulerOS
Networking
Virtual Private Cloud
Elastic IP
Elastic Load Balance
NAT Gateway
Direct Connect
Virtual Private Network
VPC Endpoint
Cloud Connect
Enterprise Router
Enterprise Switch
Global Accelerator
Management & Governance
Cloud Eye
Identity and Access Management
Cloud Trace Service
Resource Formation Service
Tag Management Service
Log Tank Service
Config
OneAccess
Resource Access Manager
Simple Message Notification
Application Performance Management
Application Operations Management
Organizations
Optimization Advisor
IAM Identity Center
Cloud Operations Center
Resource Governance Center
Migration
Server Migration Service
Object Storage Migration Service
Cloud Data Migration
Migration Center
Cloud Ecosystem
KooGallery
Partner Center
User Support
My Account
Billing Center
Cost Center
Resource Center
Enterprise Management
Service Tickets
HUAWEI CLOUD (International) FAQs
ICP Filing
Support Plans
My Credentials
Customer Operation Capabilities
Partner Support Plans
Professional Services
Analytics
MapReduce Service
Data Lake Insight
CloudTable Service
Cloud Search Service
Data Lake Visualization
Data Ingestion Service
GaussDB(DWS)
DataArts Studio
Data Lake Factory
DataArts Lake Formation
IoT
IoT Device Access
Others
Product Pricing Details
System Permissions
Console Quick Start
Common FAQs
Instructions for Associating with a HUAWEI CLOUD Partner
Message Center
Security & Compliance
Security Technologies and Applications
Web Application Firewall
Host Security Service
Cloud Firewall
SecMaster
Anti-DDoS Service
Data Encryption Workshop
Database Security Service
Cloud Bastion Host
Data Security Center
Cloud Certificate Manager
Edge Security
Situation Awareness
Managed Threat Detection
Blockchain
Blockchain Service
Web3 Node Engine Service
Media Services
Media Processing Center
Video On Demand
Live
SparkRTC
MetaStudio
Storage
Object Storage Service
Elastic Volume Service
Cloud Backup and Recovery
Storage Disaster Recovery Service
Scalable File Service Turbo
Scalable File Service
Volume Backup Service
Cloud Server Backup Service
Data Express Service
Dedicated Distributed Storage Service
Containers
Cloud Container Engine
SoftWare Repository for Container
Application Service Mesh
Ubiquitous Cloud Native Service
Cloud Container Instance
Databases
Relational Database Service
Document Database Service
Data Admin Service
Data Replication Service
GeminiDB
GaussDB
Distributed Database Middleware
Database and Application Migration UGO
TaurusDB
Middleware
Distributed Cache Service
API Gateway
Distributed Message Service for Kafka
Distributed Message Service for RabbitMQ
Distributed Message Service for RocketMQ
Cloud Service Engine
Multi-Site High Availability Service
EventGrid
Dedicated Cloud
Dedicated Computing Cluster
Business Applications
Workspace
ROMA Connect
Message & SMS
Domain Name Service
Edge Data Center Management
Meeting
AI
Face Recognition Service
Graph Engine Service
Content Moderation
Image Recognition
Optical Character Recognition
ModelArts
ImageSearch
Conversational Bot Service
Speech Interaction Service
Huawei HiLens
Video Intelligent Analysis Service
Developer Tools
SDK Developer Guide
API Request Signing Guide
Terraform
Koo Command Line Interface
Content Delivery & Edge Computing
Content Delivery Network
Intelligent EdgeFabric
CloudPond
Intelligent EdgeCloud
Solutions
SAP Cloud
High Performance Computing
Developer Services
ServiceStage
CodeArts
CodeArts PerfTest
CodeArts Req
CodeArts Pipeline
CodeArts Build
CodeArts Deploy
CodeArts Artifact
CodeArts TestPlan
CodeArts Check
CodeArts Repo
Cloud Application Engine
MacroVerse aPaaS
KooMessage
KooPhone
KooDrive

What's New

Updated on 2024/12/24 GMT+08:00

The tables below describe the functions released in each Cloud Firewall version and corresponding documentation updates. New features will be successively launched in each region.

July 2024

No.

Feature

Description

Phase

Document

1

DNAT protection

CFW can protect DNAT traffic.

Commercial use

Adding a Protection Rule

2

Schedule

You can configure schedules to make protection rules take effect only within the specified time range.

Commercial use

Schedule

3

VPC border protection based on domain names

Added domain name access control in VPC border protection.

Commercial use

VPC Border Protection Rules

March 2024

No.

Feature

Description

Phase

Document

1

Alarm notification for abnormal external connections

CFW allows you to set alarm notifications for abnormal external connections. If an abnormal IP address or domain name is detected, an alarm notification is sent.

Commercial use

Alarm Notification

2

Security reports

CFW can generate daily, weekly, or user-defined security reports based on the log report template you created, and send the reports in the specified mode within the specified period.

Commercial use

Security Reports

December 2023

No.

Feature

Description

Phase

Document

1

Pre-defined service groups

CFW provides predefined service groups, including Web Service, Database, and Remote Login and Ping, to help you quickly configure protection policies in different scenarios.

Commercial use

Viewing a Predefined Service Group

2

Pre-defined address groups

CFW provides you with predefined address groups, including NAT64 Address Set and WAF_Back-to-Source_IP_Addresses, to help you quickly obtain the back-to-source IP addresses to be allowed.

Commercial use

Viewing a Predefined Address Group

November 2023

No.

Feature

Description

Phase

Document

1

Notification of unprotected EIPs

You can get notified of unprotected EIPs after you enable this alarm notification item.

Commercial use

Alarm Notification

2

Auto protection on new EIPs

After auto protection on new EIPs is enabled, protection will be automatically enabled for new EIPs, and the EIP traffic will pass through and be protected by the firewall.

Commercial use

Viewing EIP Information

3

Security dashboard

The security dashboard displays the high-frequency attacks blocked by IPS. You can check the IPS defense status and adjust IPS defense actions in a timely manner.

Commercial use

Security Dashboard

4

Optimized traffic analysis page

Added visualized information about top N inbound, outbound, and inter-VPC traffic statistics on the traffic analysis page.

Commercial use

Traffic Analysis

5

Security Dashboard

You can use the policy assistant to quickly check protection rule hits and adjust rules in a timely manner.

Commercial use

Policy Assistant

6

Optimized Dashboard page

Optimized the display of traffic statistics and added traffic trends on the Dashboard page.

Commercial use

CFW Console Dashboard

July 2023

No.

Feature

Description

Phase

Document

1

Antivirus

The anti-virus function identifies and processes virus files through virus feature detection to prevent data damage, permission change, and system breakdown caused by virus files.

Commercial use

Managing the Antivirus Function

May 2023

No.

Feature

Description

Phase

Document

1

Reverse shell defense

Defend against reverse shells.

Commercial use

Configuring Intrusion Prevention

2

Inter-VPC border protection policy import and export

You can import and export inter-VPC border firewall access control policies.

Commercial use

Managing Protection Rules in Batches

3

Custom IPS signature

You can configure network detection signature rules in CFW. CFW will detect threats in data traffic based on signatures.

Commercial use

Custom IPS Signature

4

Sensitive directory scan defense

Defend against scan attacks on sensitive directories in real time.

Commercial use

Configuring Intrusion Prevention

April 2023

No.

Feature

Description

Phase

Document

1

Network packet capture

You can use the packet capture function to locate network faults and attacks.

Commercial use

Network Packet Capture

2

Domain group protection

A domain name group is a collection of multiple domain names or wildcard domain names.

You can configure domain name groups to protect domains in batches.

Commercial use

Managing Domain Groups

March 2023

No.

Feature

Description

Phase

Document

1

User-defined basic defense

You can check the CVE ID, risk level, and attack type of a basic IPS defense rule and modify defense actions.

Commercial use

Basic Defense Rule Management

2

Alarm notification

CFW interconnects with Simple Message Notification (SMN) to send IPS attack logs and excessive traffic warning through the notification method (email or SMS) you set.

Commercial use

Alarm Notification

3

CFW professional edition

Internet border protection, Internet ACL, full network traffic analysis, network intrusion prevention system (IPS), inter-VPC traffic protection, and inter-VPC asset protection

Commercial use

Editions

November 2022

No.

Feature

Description

Phase

Document

1

API calling

APIs can be invoked through the API Explorer.

Commercial use

API Overview

August 2022

No.

Feature

Description

Phase

Document

1

CFW OBT test

Launched the first open beta test (OBT).

--

What Is CFW?

Utilizamos cookies para mejorar nuestro sitio y tu experiencia. Al continuar navegando en nuestro sitio, tú aceptas nuestra política de cookies. Descubre más

Feedback

Feedback

Feedback

0/500

Selected Content

Submit selected content with the feedback