Quickly Block Malicious Traffic Through Traffic Blocking
During routine O&M, you may encounter attacks from a large number of malicious IP addresses. You need to quickly block the traffic. However, manually configuring the blacklist is inefficient. CFW provides the one-click traffic blocking function, which allows you to block all malicious access by simply adding the malicious IP addresses to the firewall.
Traffic Blocking Policy Description
The protected objects, actions, and application scenarios of traffic blocking policies are as follows.
Name |
Description |
---|---|
Protected object |
IP addresses |
Network type |
|
Action |
Traffic is blocked directly. |
Scenario |
|
Constraints
- Only the following formats are supported:
- IP address, for example, 10.0.0.0.
- Multiple consecutive IP addresses, for example, 10.0.0.0-10.0.1.0.
- Address segment, for example, 10.0.0.0/16.
- Only files in .txt or .csv format or text input is supported.
- Number of IP addresses that can be added to a single firewall instance:
- Standard edition: 100,000
- Professional edition: 500,000
- Only the professional edition supports NAT traffic protection. All editions support EIP traffic protection.
Impact on the System
- After an IP address is added to the traffic blocking list, traffic destined for and from this IP address will be blocked.
- When configuring an IP address to be blocked, if address translation or proxy is involved, evaluate the impact of blocking IP addresses with caution.
Quickly Block Malicious Traffic Through Traffic Blocking
- Log in to the management console.
- Click
in the upper left corner of the management console and select a region or project.
- In the navigation pane on the left, click
and choose . The Dashboard page will be displayed.
- (Optional) Switch to another firewall instance. Select a firewall from the drop-down list in the upper left corner of the page.
- In the navigation pane, choose Traffic Blocking page is displayed. . The
- Click
to enable the traffic blocking function.
If a blocked file exists in the list, check the IP address and then enable this button.
- To add the IP addresses to be blocked, click Add Object and set parameters.
Table 1 Add object Parameter
Description
Mode
Select the method of adding the blocked IP address.- Append: The existing IP addresses remain unchanged, and the newly imported IP addresses are added.
- Overwrite: The newly imported IP addresses will replace the existing IP addresses.
Effective Scope
Select the object to be blocked.- EIP
- NAT (Only the professional edition can protect NAT traffic.)
Content Type
Selects a type.- File upload: Click Add. Only files in .txt or .csv format can be uploaded or text input is supported.
- Text input: Enter an IP address in the IP Address text box. The total text length cannot exceed 4,000 characters.
The following formats are supported:- IP address, for example, 10.0.0.0.
- Multiple consecutive IP addresses, for example, 10.0.0.0-10.0.1.0.
- Address segment, for example, 10.0.0.0/16.
- Click OK. Added is displayed in the Status column.
If the file fails to be added, modify the file or text as prompted and add the file again.
Follow-up Operations
For details about how to view logs, see Attack Event Logs.

A log record is generated every minute. Each record summarizes the data in the minute.
References
- Viewing or exporting IP address information: Click Download in the Operation column of the row that contains the target IP address. The downloaded file contains all added IP address information.
- Deleting IP address information: Click Delete in the Operation column of the row that contains the IP address, enter DELETE, and click OK.
The deletion operation cannot be performed on the content added at a time. When the deletion operation is performed, all IP addresses within the EIP or NAT will be cleared.
Feedback
Was this page helpful?
Provide feedbackThank you very much for your feedback. We will continue working to improve the documentation.See the reply and handling status in My Cloud VOC.
For any further questions, feel free to contact us through the chatbot.
Chatbot