Updated on 2025-07-10 GMT+08:00

Overview

You can configure referer validation, IP address access control lists (ACLs), User-Agent ACLs, token authentication, remote authentication, and IP access frequency to identify and filter out unauthorized users and improve CDN security.

  • You can modify access control settings of a domain name that is in the Enabled or Configuring state and is not locked or banned by CDN.
  • IP addresses belong to carriers and change irregularly. Although Huawei Cloud periodically updates the IP address library, the update may be delayed. As a result, some access control functions may occasionally block or allow requests, or client requests may not be scheduled to the optimal PoP.

Function

Description

Referer Validation

Configure a referer blacklist or whitelist to identify and filter out users from specific access sources.

IP ACL

Filter out requests from specific IP addresses.

User-Agent ACL

Filter out requests from specific user agents.

Geo-blocking

Prevent users in certain geographical locations from accessing your content.

Token Authentication

Protect your website resources from being downloaded by malicious users.

Remote Authentication

Allow CDN to forward user requests to a specific server for authentication, to prevent malicious resource download.

IP Access Frequency

Restrict the number of times that a single IP address requests a URL from a PoP per second to defend against CC attacks and malicious theft.