Updated on 2025-07-04 GMT+08:00

Security Group

Description

Select a security group that can protect the dedicated WAF instance and ensure that WAF can properly process service traffic. Click Manage Security Group to switch to the VPC management console and create a security group. After you add an instance to a security group, the instance will be protected by the access rules of the security group.

  • You can configure a security group as follows:
    • Inbound rules

      Add an inbound rule to allow incoming network traffic to pass through over a specified port based on your service requirements. For example, if you want to allow access from port 80, add a rule that allows TCP and port 80.

    • Outbound rules

      Retain the default settings. All outgoing network traffic is allowed by default.

    For more details, see Adding a Security Group Rule.

  • If dedicated WAF instances and origin servers they protect are not in the same VPC, you can use a VPC peering connection to connect two VPCs. This method is not recommended as VPC peering connections may be not stable enough sometimes.