WAF Strategy
WAF (Web Application Firewall) is used to provide centralized protection for Web applications from common attacks and vulnerabilities. The WAF can effectively identify web business traffic with malicious characteristics, and after cleaning and filtering the traffic, return the normal and safe traffic to the server to avoid the web server from being invaded by malicious intimidation leading to abnormal server performance and other problems, and guarantee the business security and data security of the website.
Currently only read only docking AWS, Azure, Ali cloud platform WAF.
Entry: In the cloud management platform click the top left corner navigation menu, and click “Network/Network Security/WAF Strategy” menu item in the left menu bar that pops up to enter the WAF strategy list.
Sync Status
This function is used to get the current state of the WAF.
Single Sync Status
- On the WAF strategy page, click the “Sync Status” button in the action column on the right side of the list to synchronize the WAF status.
Batch Sync Status
- On the WAF Strategy page, click the “Sync Status” button in the action column at the top of the list to synchronize the WAF status.
Management Rules
This function is used to view the rule information under the WAF strategy.
- On the WAF strategy page, click the “More” button on the right action bar of WAF, and select the drop-down menu “Manage Rules” menu item to enter the rules page.
- Click the “View” button to view the specific rule information.
- Rule Name: The name of the WAF rule.
- Priority: The priority of the WAF rule, the smaller the value, the higher the priority.
- Matching strategy: support AND, OR, NOT for multiple conditions under the rule.
- AND means that all of the following conditions are satisfied.
- OR means any one of the following conditions is satisfied.
- NOT means that the following conditions are not satisfied.
- Conditions: WAF will check the request traffic by the settings in the conditions, and the conditions support for IP, location, string and other types.
- Processing action: The processing action that WAF will take for the traffic that satisfies the rule condition, including allow, block, log, etc.
Management Resources
This function is used to view the resource information managed by the WAF strategy.
- On the WAF strategy page, click the “More” button in the action bar on the right side of the WAF, and select the drop-down menu “Manage Resources” menu item to enter the associated resources page.
- View the resource name, resource type, port and other information.
Delete
This function is used to delete the WAF.
Single Delete
- On the WAF strategy page, click the “More” button in the action bar on the right side of the WAF, select the drop-down menu “Delete” menu item, and the action confirmation dialog box pops up.
- Click the “OK” button to complete the operation.
Batch Delete
- Select one or more WAFs in the WAF list, click the “Bulk Operation” button at the top of the list, select the drop-down menu “Delete” menu item, and the operation confirmation dialog box pops up.
- Click the “OK” button to complete the operation.
View WAF details
This function is used to view the detailed information of the WAF.
- On the WAF strategy page, click the WAF name item to enter the WAF details page.
- View the following information.
- Details: Includes Cloud ID, ID, name, status, domain, project, WAF type, default strategy action, platform, region, availability zone, cloud account, cloud subscription, create at, update at, and description.
- Configuration information: including version, storage, bandwidth, connection endpoint, message retention length.
- Other information: Support to turn on or off the deletion protection.
View WAF operation log
This function is used to view the log information of WAF-related operations.
- On the WAF strategy page, click the WAF name item to enter the WAF details page.
- Click the Operation Log tab to enter the Operation Log page.
- Load More Logs: In the Operation Logs page, the list shows 20 operation logs by default. To view more operation logs, click the “Load More” button to get more logs.
- View Log Details: Click the “View” button on the right column of the operation log to view the log details. Copy details are supported.
- View logs of specified time period: If you want to view the operation logs of a certain time period, set the specific date in the start date and end date at the top right of the list to query the log information of the specified time period.
- Export logs: Currently, only the logs displayed on this page are supported to be exported. Click the upper-right corner of icon, set the export data column in the pop-up Export Data dialog box, and click the “OK” button to export the logs.