Access Control Overview

Download

Mode fokus

Ukuran font

Terakhir diperbarui: 2026-05-12 17:18:43

Access Control Assets
CFW can protect multiple types of resources in the cloud environment:
Asset Type
Description
Public IP Address
Including public IP addresses bound to CVM instances, Elastic Public IP (EIP), and public egress of Load Balancer (CLB), and so on.
Private IP Address
Including CVM instances, private IP addresses bound to TKE nodes, and so on.
Server Instance
Including CVM instances, LH instances, and so on.
Domain
Including public domain names, private domain names, and so on.
Access Control method
CFW supports configuring Access Control rules in the following ways:
Access Control method
Description
IP Rule
Performing Access Control based on IPv4 and IPv6, supporting exact match or CIDR subnet configuration.
Domain Name Rule
Implementing flexible domain name traffic control based on the FQDN feature, determining whether to allow access based on the domain name in the request, without verifying the IP address resolved from the domain name.
Domain Name Resolution Rule
Based on the protocol and the region where the instance resides, allow the domain's actual requested IP address.
Resource Tag Rule
Batch managing access permissions based on Tencent Cloud resource Tags.
Address Template rule
Using predefined IP address templates to quickly configure rules.
Geolocation Tule
Restrict access based on the geographical attribution (country, region) of the IP address.
Cloud Provider Rule
Implementing control for specific cloud service providers' IP address ranges or service tags.
﻿

Bantuan dan Dukungan

Apakah halaman ini membantu?

Anda juga dapat Menghubungi Penjualan atau Mengirimkan Tiket untuk meminta bantuan.

masukan

tencent cloud

Tencent Cloud Firewall

Access Control Overview

Access Control Assets

Access Control method

Bantuan dan Dukungan

Asset Type	Description
Public IP Address	Including public IP addresses bound to CVM instances, Elastic Public IP (EIP), and public egress of Load Balancer (CLB), and so on.
Private IP Address	Including CVM instances, private IP addresses bound to TKE nodes, and so on.
Server Instance	Including CVM instances, LH instances, and so on.
Domain	Including public domain names, private domain names, and so on.

Access Control method	Description
IP Rule	Performing Access Control based on IPv4 and IPv6, supporting exact match or CIDR subnet configuration.
Domain Name Rule	Implementing flexible domain name traffic control based on the FQDN feature, determining whether to allow access based on the domain name in the request, without verifying the IP address resolved from the domain name.
Domain Name Resolution Rule	Based on the protocol and the region where the instance resides, allow the domain's actual requested IP address.
Resource Tag Rule	Batch managing access permissions based on Tencent Cloud resource Tags.
Address Template rule	Using predefined IP address templates to quickly configure rules.
Geolocation Tule	Restrict access based on the geographical attribution (country, region) of the IP address.
Cloud Provider Rule	Implementing control for specific cloud service providers' IP address ranges or service tags.