tencent cloud

Web Application Firewall

Release Notes and Announcements
Release Notes
Product Announcement
Security Advisory
Product Introduction
Overview
Product Category
Strengths
Scenarios
Plans and Editions
Supported Regions
Basic Concepts
Getting Started
Getting Started
FAQs for Beginners
Operation Guide
Overview
Connection Management
Security Operations
Protection Policies
Service Settings
사례 튜토리얼
WAF CCP Overview
Bot Management
API Security
Integration
Protection Configuration
FAQS
Product Consultation
Connection
Usage
Permissions
Sandbox Isolation Status
WAF 정책
개인 정보 보호 정책
데이터 처리 및 보안 계약
문서Web Application Firewall사례 튜토리얼IntegrationCombined Application of WAF and Anti-DDoS Pro

Combined Application of WAF and Anti-DDoS Pro

PDF
포커스 모드
폰트 크기
마지막 업데이트 시간: 2023-12-29 14:54:08

Scenarios

Web Application Firewall (WAF) is able to defeat CC attacks. WAF can work with Anti-DDoS Pro to provide an all-out protection against non-HTTP requests.
With DDoS protection capability of hundreds of Gbps, Anti-DDoS Pro can easily deal with DDoS attacks and ensure the availability of your business.
WAF can block web attacks in real time to ensure the security of your business data and information.

Directions

Step 1. Configure WAF

1. Log in to the WAF Console and select Instance Management -> Instance List on the left sidebar to enter the instance list.
2. On the page, select an instance, and click Domain Name Connection to add a domain name.
img
img

3. On the domain name connection page, click Add Domain Name and configure the following parameters as needed:
Domain Name Configuration
Domain Name: enter the domain name to be protected.
Web Server Configurations: select a protocol type and port as needed.
Enable HTTP 2.0: select according to your situation.
Server Port: select according to your situation.
Origin Server Address: enter the real IP address of the origin server of the website to be protected, which is the public IP of the origin server.
Other Configurations
Proxy: select "No". If WAF works with Anti-DDoS Advanced, select "Yes".
Enable WebSocket and Load Balancer: select according to your situation.

Note:
If the real server has multiple intermediate IPs, choose a load balancing strategy as needed. The round-robin strategy will distribute requests of the source IP across real servers in order, while the IP hash strategy will forward requests of the source IP to the same real server. Round-robin is used by default.
4. After the configuration, click Save.

Step 2. Configure Anti-DDoS Pro

1. Log in to Anti-DDoS Pro Console and select Anti-DDoS Pro > Service Packs on the left sidebar.
2. Select a region of the target Anti-DDoS Pro instance and click Protected Resource on the right of the instance.
img
img

3. Select "Web Application Firewall" as the resource type, and set the IP address of the WAF instance.
Note:
For a CLB WAF instance, select "Load Balancing" as the resource type, and set the public IP address of the instance.

4. After you complete the configuration, click OK.
이전 주제: API Exposure Management다음 주제: Applying for and Using Free HTTPS Certificates

도움말 및 지원

문제 해결에 도움이 되었나요?

피드백