Updated on 2022-02-22 GMT+08:00

Creating a Policy

A policy is a combination of multiple rules, such as basic web protection, blacklist or whitelist, and precise protection rules. A policy can be applied to multiple domain names. This section describes how to create a policy.

Prerequisites

Login credentials have been obtained.

Procedure

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. Click Service List at the top of the page. Choose Security > Web Application Firewall. In the navigation pane, choose Policies.
  1. In the upper right corner above the list, click Create Protection Policy.
  2. In the dialog box displayed, enter a policy name and click OK.
  3. In the Policy Name column, click the target policy name. On the displayed page, add rules to the policy by referring to Section Rule Configurations.

    • To modify a policy name, click next to the target policy name. In the dialog box displayed, enter a new policy name.
    • After a domain name is created, WAF protection is enabled by default. The mode of Basic Web Protection is Log only (detected attacks are only logged but not blocked.). By default, WAF creates a CC attack protection rule to the policy. The rule can be modified but cannot be deleted.