forked from docs/doc-exports
Li, Qiao
e8a6dc40f2
Reviewed-by: Belejkanic, Lukas <lukas.belejkanic@t-systems.com> Reviewed-by: Hasko, Vladimir <vladimir.hasko@t-systems.com> Co-authored-by: Li, Qiao <qiaoli@huawei.com> Co-committed-by: Li, Qiao <qiaoli@huawei.com>
1712 lines
74 KiB
JSON
1712 lines
74 KiB
JSON
[
|
|
{
|
|
"uri":"waf_01_0064.html",
|
|
"product_code":"wafd",
|
|
"code":"1",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Service Overview",
|
|
"title":"Service Overview",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0045.html",
|
|
"product_code":"wafd",
|
|
"code":"2",
|
|
"des":"Web Application Firewall (WAF) keeps web services stable and secure. It examines all HTTP and HTTPS requests to detect and block the following attacks: Structured Query L",
|
|
"doc_type":"usermanual",
|
|
"kw":"What Is Web Application Firewall?,Service Overview,User Guide",
|
|
"title":"What Is Web Application Firewall?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0272.html",
|
|
"product_code":"wafd",
|
|
"code":"3",
|
|
"des":"WAF is deployed in dedicated mode. The following tables describe specifications and functions of the dedicated WAF instances.Table 1 describes dedicated WAF instances.For",
|
|
"doc_type":"usermanual",
|
|
"kw":"Product Specifications,Service Overview,User Guide",
|
|
"title":"Product Specifications",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0094.html",
|
|
"product_code":"wafd",
|
|
"code":"4",
|
|
"des":"WAF makes it easier for you to handle web security risks.Objects supported by dedicated WAF instances: domain names or IP addresses of web applications on a cloud or on-p",
|
|
"doc_type":"usermanual",
|
|
"kw":"Functions,Service Overview,User Guide",
|
|
"title":"Functions",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0065.html",
|
|
"product_code":"wafd",
|
|
"code":"5",
|
|
"des":"WAF examines web traffic from multiple dimensions to accurately identify malicious requests and filter attacks, reducing the risks of data being tampered with or stolen.W",
|
|
"doc_type":"usermanual",
|
|
"kw":"Product Advantages,Service Overview,User Guide",
|
|
"title":"Product Advantages",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0046.html",
|
|
"product_code":"wafd",
|
|
"code":"6",
|
|
"des":"WAF helps you defend against common web attacks, such as command injection and sensitive file access.Countless malicious requests may be sent to service interfaces during",
|
|
"doc_type":"usermanual",
|
|
"kw":"Application Scenarios,Service Overview,User Guide",
|
|
"title":"Application Scenarios",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0316.html",
|
|
"product_code":"wafd",
|
|
"code":"7",
|
|
"des":"Projects in IAM are used to group and isolate OpenStack resources (computing resources, storage resources, and network resources). Resources in your account must be mount",
|
|
"doc_type":"usermanual",
|
|
"kw":"Project and Enterprise Project,Service Overview,User Guide",
|
|
"title":"Project and Enterprise Project",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0130.html",
|
|
"product_code":"wafd",
|
|
"code":"8",
|
|
"des":"To ensure that website visitors' personal data, such as the username, password, and mobile phone number, will not be obtained by unauthorized or unauthenticated entities ",
|
|
"doc_type":"usermanual",
|
|
"kw":"Personal Data Protection Mechanism,Service Overview,User Guide",
|
|
"title":"Personal Data Protection Mechanism",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0052.html",
|
|
"product_code":"wafd",
|
|
"code":"9",
|
|
"des":"If you need to assign different permissions to employees in your enterprise to access your WAF resources, IAM is a good choice for fine-grained permissions management. IA",
|
|
"doc_type":"usermanual",
|
|
"kw":"WAF Permissions Management,Service Overview,User Guide",
|
|
"title":"WAF Permissions Management",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0051.html",
|
|
"product_code":"wafd",
|
|
"code":"10",
|
|
"des":"This topic describes WAF and other cloud services.Cloud Eye monitors the indicators of the dedicated WAF, so that you can understand the protection status of the dedicate",
|
|
"doc_type":"usermanual",
|
|
"kw":"WAF and Other Services,Service Overview,User Guide",
|
|
"title":"WAF and Other Services",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0071.html",
|
|
"product_code":"wafd",
|
|
"code":"11",
|
|
"des":"Sort out all website services you want to protect with WAF. This helps you learn about your workloads and specific data of your workloads so that you can choose and confi",
|
|
"doc_type":"usermanual",
|
|
"kw":"Overview,User Guide",
|
|
"title":"Overview",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_1072.html",
|
|
"product_code":"wafd",
|
|
"code":"12",
|
|
"des":"If your service servers are deployed on the cloud, you can buy dedicated WAF instances (or dedicated WAF engines) to protect important websites through domain names or to",
|
|
"doc_type":"usermanual",
|
|
"kw":"Applying for a Dedicated WAF Instance,User Guide",
|
|
"title":"Applying for a Dedicated WAF Instance",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0070.html",
|
|
"product_code":"wafd",
|
|
"code":"13",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Enabling WAF Protection",
|
|
"title":"Enabling WAF Protection",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_1249.html",
|
|
"product_code":"wafd",
|
|
"code":"14",
|
|
"des":"Table 1 lists the ports that can be protected by WAF.Ports supported by WAFPort CategoryHTTP ProtocolHTTPS ProtocolPort LimitStandard ports80443UnlimitedNon-standard port",
|
|
"doc_type":"usermanual",
|
|
"kw":"Ports Supported by WAF,Enabling WAF Protection,User Guide",
|
|
"title":"Ports Supported by WAF",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0249.html",
|
|
"product_code":"wafd",
|
|
"code":"15",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Connecting a Website to WAF",
|
|
"title":"Connecting a Website to WAF",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0326.html",
|
|
"product_code":"wafd",
|
|
"code":"16",
|
|
"des":"To let your dedicated WAF instance protect your website, the domain name of the website must be connected to the WAF instance so that the website incoming traffic can go ",
|
|
"doc_type":"usermanual",
|
|
"kw":"Connection Process (Dedicated Mode),Connecting a Website to WAF,User Guide",
|
|
"title":"Connection Process (Dedicated Mode)",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0250.html",
|
|
"product_code":"wafd",
|
|
"code":"17",
|
|
"des":"If your service servers are deployed on the cloud, you can add the domain name or IP address of the website to WAF so that the website traffic is forwarded to WAF for ins",
|
|
"doc_type":"usermanual",
|
|
"kw":"Step 1: Add a Website to WAF,Connecting a Website to WAF,User Guide",
|
|
"title":"Step 1: Add a Website to WAF",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0251.html",
|
|
"product_code":"wafd",
|
|
"code":"18",
|
|
"des":"To ensure your dedicated WAF instance reliability, after you add a website to it, use Elastic Load Balance (ELB) to configure a load balancer and a health check for the d",
|
|
"doc_type":"usermanual",
|
|
"kw":"Step 2: Configure a Load Balancer,Connecting a Website to WAF,User Guide",
|
|
"title":"Step 2: Configure a Load Balancer",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0252.html",
|
|
"product_code":"wafd",
|
|
"code":"19",
|
|
"des":"After you configure a load balancer for your dedicated WAF instance, you need to unbind the EIP from the origin server and then bind this EIP to the load balancer you con",
|
|
"doc_type":"usermanual",
|
|
"kw":"Step 3: Bind an EIP to a Load Balancer,Connecting a Website to WAF,User Guide",
|
|
"title":"Step 3: Bind an EIP to a Load Balancer",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0343.html",
|
|
"product_code":"wafd",
|
|
"code":"20",
|
|
"des":"To let your dedicated WAF instances take effect, configure ACL rules on the origin server to trust only the back-to-source IP addresses of all your dedicated WAF instance",
|
|
"doc_type":"usermanual",
|
|
"kw":"Step 4: Whitelist the Back-to-Source IP Addresses of Your Dedicated WAF Instances,Connecting a Websi",
|
|
"title":"Step 4: Whitelist the Back-to-Source IP Addresses of Your Dedicated WAF Instances",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0067.html",
|
|
"product_code":"wafd",
|
|
"code":"21",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Website Domain Name Management",
|
|
"title":"Website Domain Name Management",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0020.html",
|
|
"product_code":"wafd",
|
|
"code":"22",
|
|
"des":"This topic describes how to view the basic information about a protected website, switch WAF working mode, and delete a domain name of a protected website from WAF.A webs",
|
|
"doc_type":"usermanual",
|
|
"kw":"Viewing Basic Information,Website Domain Name Management,User Guide",
|
|
"title":"Viewing Basic Information",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0003.html",
|
|
"product_code":"wafd",
|
|
"code":"23",
|
|
"des":"You can change the working mode of WAF. WAF can work in Enabled or Suspended mode.If you have enabled enterprise projects, ensure that you have all operation permissions ",
|
|
"doc_type":"usermanual",
|
|
"kw":"Switching WAF Working Mode,Website Domain Name Management,User Guide",
|
|
"title":"Switching WAF Working Mode",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0169.html",
|
|
"product_code":"wafd",
|
|
"code":"24",
|
|
"des":"Transport Layer Security (TLS) provides confidentiality and ensures data integrity for data sent between applications over the Internet. HTTPS is a network protocol const",
|
|
"doc_type":"usermanual",
|
|
"kw":"Configuring PCI DSS/3DS Certification Check and TLS Version,Website Domain Name Management,User Guid",
|
|
"title":"Configuring PCI DSS/3DS Certification Check and TLS Version",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_1171.html",
|
|
"product_code":"wafd",
|
|
"code":"25",
|
|
"des":"If you want to set a timeout duration for each request between your WAF instance and origin server, enable Timeout Settings and specify WAF-to-Server connection timeout (",
|
|
"doc_type":"usermanual",
|
|
"kw":"Configuring Connection Timeout,Website Domain Name Management,User Guide",
|
|
"title":"Configuring Connection Timeout",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_1172.html",
|
|
"product_code":"wafd",
|
|
"code":"26",
|
|
"des":"If a large number of 502 Bad Gateway and 504 Gateway Timeout errors are detected, you can enable WAF breakdown protection and connection protection to let WAF suspend you",
|
|
"doc_type":"usermanual",
|
|
"kw":"Configuring Connection Protection,Website Domain Name Management,User Guide",
|
|
"title":"Configuring Connection Protection",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0262.html",
|
|
"product_code":"wafd",
|
|
"code":"27",
|
|
"des":"If you set Client Protocol to HTTPS when you add a website to WAF, upload a certificate and use it for your website.If your website certificate is about to expire, purcha",
|
|
"doc_type":"usermanual",
|
|
"kw":"Updating a Certificate,Website Domain Name Management,User Guide",
|
|
"title":"Updating a Certificate",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0270.html",
|
|
"product_code":"wafd",
|
|
"code":"28",
|
|
"des":"WAF allows you to configure traffic identifiers by IP address, session, or user tag to block possibly malicious requests from known attack sources based on IP address, Co",
|
|
"doc_type":"usermanual",
|
|
"kw":"Configuring a Traffic Identifier for a Known Attack Source,Website Domain Name Management,User Guide",
|
|
"title":"Configuring a Traffic Identifier for a Known Attack Source",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0001.html",
|
|
"product_code":"wafd",
|
|
"code":"29",
|
|
"des":"This topic describes how to edit or add server information for a website to be protected.Applicable scenarios:Modify server information, including Client Protocol, Server",
|
|
"doc_type":"usermanual",
|
|
"kw":"Editing Server Information,Website Domain Name Management,User Guide",
|
|
"title":"Editing Server Information",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0154.html",
|
|
"product_code":"wafd",
|
|
"code":"30",
|
|
"des":"If a visitor is blocked by WAF, the Default block page of WAF is returned by default. You can also configure Custom or Redirection for the block page to be returned as re",
|
|
"doc_type":"usermanual",
|
|
"kw":"Modifying the Alarm Page,Website Domain Name Management,User Guide",
|
|
"title":"Modifying the Alarm Page",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0005.html",
|
|
"product_code":"wafd",
|
|
"code":"31",
|
|
"des":"This topic describes how to remove a website from WAF if you no longer need to protect it.Before removing a website from WAF, go to your DNS provider and resolve your dom",
|
|
"doc_type":"usermanual",
|
|
"kw":"Removing a Protected Website from WAF,Website Domain Name Management,User Guide",
|
|
"title":"Removing a Protected Website from WAF",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0261.html",
|
|
"product_code":"wafd",
|
|
"code":"32",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Certificate Management",
|
|
"title":"Certificate Management",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0078.html",
|
|
"product_code":"wafd",
|
|
"code":"33",
|
|
"des":"If you select HTTPS for Client Protocol when you add a website to WAF, a certificate must be associated with the website.You can upload a certificate to WAF. Then you can",
|
|
"doc_type":"usermanual",
|
|
"kw":"Uploading a Certificate,Certificate Management,User Guide",
|
|
"title":"Uploading a Certificate",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0367.html",
|
|
"product_code":"wafd",
|
|
"code":"34",
|
|
"des":"If you configure Client Protocol to HTTPS for your website, the website needs an SSL certificate. This topic describes how to bind an SSL certificate that you have upload",
|
|
"doc_type":"usermanual",
|
|
"kw":"Binding a Certificate to a Protected Website,Certificate Management,User Guide",
|
|
"title":"Binding a Certificate to a Protected Website",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0263.html",
|
|
"product_code":"wafd",
|
|
"code":"35",
|
|
"des":"This topic describes how to delete an expired or invalid certificate.If you have enabled enterprise projects, ensure that you have all operation permissions for the proje",
|
|
"doc_type":"usermanual",
|
|
"kw":"Deleting a Certificate,Certificate Management,User Guide",
|
|
"title":"Deleting a Certificate",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0282.html",
|
|
"product_code":"wafd",
|
|
"code":"36",
|
|
"des":"This topic describes how to view certificate details, including the certificate name, domain name a certificate is used for, and expiration time.You have created or pushe",
|
|
"doc_type":"usermanual",
|
|
"kw":"Viewing Certificate Information,Certificate Management,User Guide",
|
|
"title":"Viewing Certificate Information",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0007.html",
|
|
"product_code":"wafd",
|
|
"code":"37",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Rule Configuration",
|
|
"title":"Rule Configuration",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0129.html",
|
|
"product_code":"wafd",
|
|
"code":"38",
|
|
"des":"The built-in protection rules of WAF help you defend against common web application attacks, including XSS attacks, SQL injection, crawlers, and web shells. You can custo",
|
|
"doc_type":"usermanual",
|
|
"kw":"Configuration Guidance,Rule Configuration,User Guide",
|
|
"title":"Configuration Guidance",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0008.html",
|
|
"product_code":"wafd",
|
|
"code":"39",
|
|
"des":"After this function is enabled, WAF can defend against common web attacks, such as SQL injections, XSS, remote overflow vulnerabilities, file inclusions, Bash vulnerabili",
|
|
"doc_type":"usermanual",
|
|
"kw":"Configuring Basic Web Protection Rules,Rule Configuration,User Guide",
|
|
"title":"Configuring Basic Web Protection Rules",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_1209.html",
|
|
"product_code":"wafd",
|
|
"code":"40",
|
|
"des":"You can customize a CC attack protection rule to restrict access to a specific URL on your website based on an IP address, cookie, or Referer, mitigating CC attacks. To m",
|
|
"doc_type":"usermanual",
|
|
"kw":"Configuring a CC Attack Protection Rule,Rule Configuration,User Guide",
|
|
"title":"Configuring a CC Attack Protection Rule",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0010.html",
|
|
"product_code":"wafd",
|
|
"code":"41",
|
|
"des":"WAF allows you to customize protection rules by combining HTTP headers, cookies, URLs, request parameters, and client IP addresses.You can combine common HTTP fields, suc",
|
|
"doc_type":"usermanual",
|
|
"kw":"Configuring a Precise Protection Rule,Rule Configuration,User Guide",
|
|
"title":"Configuring a Precise Protection Rule",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0081.html",
|
|
"product_code":"wafd",
|
|
"code":"42",
|
|
"des":"This topic describes how to create a reference table to batch configure protection metrics of a single type, such as Path, User Agent, IP, Params, Cookie, Referer, and He",
|
|
"doc_type":"usermanual",
|
|
"kw":"Adding a Reference Table,Rule Configuration,User Guide",
|
|
"title":"Adding a Reference Table",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0012.html",
|
|
"product_code":"wafd",
|
|
"code":"43",
|
|
"des":"You can configure blacklist and whitelist rules to block, log only, or allow access requests from specific IP addresses or IP address ranges.If you have enabled enterpris",
|
|
"doc_type":"usermanual",
|
|
"kw":"Configuring an IP Address Blacklist or Whitelist Rule,Rule Configuration,User Guide",
|
|
"title":"Configuring an IP Address Blacklist or Whitelist Rule",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0271.html",
|
|
"product_code":"wafd",
|
|
"code":"44",
|
|
"des":"If WAF blocks a malicious request by IP address, Cookie, or Params, you can configure a known attack source rule to let WAF automatically block all requests from the atta",
|
|
"doc_type":"usermanual",
|
|
"kw":"Configuring a Known Attack Source Rule,Rule Configuration,User Guide",
|
|
"title":"Configuring a Known Attack Source Rule",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0013.html",
|
|
"product_code":"wafd",
|
|
"code":"45",
|
|
"des":"This topic describes how to configure a geolocation access control rule. A geolocation access control rule allows you to control IP addresses forwarded from or to specifi",
|
|
"doc_type":"usermanual",
|
|
"kw":"Configuring a Geolocation Access Control Rule,Rule Configuration,User Guide",
|
|
"title":"Configuring a Geolocation Access Control Rule",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0014.html",
|
|
"product_code":"wafd",
|
|
"code":"46",
|
|
"des":"WAF can cache configuration for static web pages of websites. After you configure a web tamper protection rule, WAF can:Return directly the cached web page to the normal ",
|
|
"doc_type":"usermanual",
|
|
"kw":"Configuring a Web Tamper Protection Rule,Rule Configuration,User Guide",
|
|
"title":"Configuring a Web Tamper Protection Rule",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0015.html",
|
|
"product_code":"wafd",
|
|
"code":"47",
|
|
"des":"You can configure website anti-crawler protection rules to protect against search engines, scanners, script tools, and other crawlers, and use JavaScript to create custom",
|
|
"doc_type":"usermanual",
|
|
"kw":"Configuring Anti-Crawler Rules,Rule Configuration,User Guide",
|
|
"title":"Configuring Anti-Crawler Rules",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0054.html",
|
|
"product_code":"wafd",
|
|
"code":"48",
|
|
"des":"You can add two types of information leakage prevention rules.Sensitive information filtering: prevents disclosure of sensitive information (such as ID numbers, phone num",
|
|
"doc_type":"usermanual",
|
|
"kw":"Configuring an Information Leakage Prevention Rule,Rule Configuration,User Guide",
|
|
"title":"Configuring an Information Leakage Prevention Rule",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0016.html",
|
|
"product_code":"wafd",
|
|
"code":"49",
|
|
"des":"Once an attack hits a WAF basic web protection rule or a feature-library anti-crawler rule, WAF will respond to the attack immediately according to the protective action ",
|
|
"doc_type":"usermanual",
|
|
"kw":"Configuring a Global Protection Whitelist (Formerly False Alarm Masking) Rule,Rule Configuration,Use",
|
|
"title":"Configuring a Global Protection Whitelist (Formerly False Alarm Masking) Rule",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0017.html",
|
|
"product_code":"wafd",
|
|
"code":"50",
|
|
"des":"This topic describes how to configure data masking rules. You can configure data masking rules to prevent sensitive data such as passwords from being displayed in event l",
|
|
"doc_type":"usermanual",
|
|
"kw":"Configuring a Data Masking Rule,Rule Configuration,User Guide",
|
|
"title":"Configuring a Data Masking Rule",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0021.html",
|
|
"product_code":"wafd",
|
|
"code":"51",
|
|
"des":"This topic describes how to view event logs, including attack and request statistics, event distribution, top 10 attacked domain names, top 10 attack source IP addresses,",
|
|
"doc_type":"usermanual",
|
|
"kw":"Dashboard,User Guide",
|
|
"title":"Dashboard",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0018.html",
|
|
"product_code":"wafd",
|
|
"code":"52",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Event Management",
|
|
"title":"Event Management",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0156.html",
|
|
"product_code":"wafd",
|
|
"code":"53",
|
|
"des":"On the Events page, you can view events generated for blocked attacks and logged only attacks. You can view details of WAF events, including the time an event occurs, ori",
|
|
"doc_type":"usermanual",
|
|
"kw":"Viewing Protection Event Logs,Event Management,User Guide",
|
|
"title":"Viewing Protection Event Logs",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0024.html",
|
|
"product_code":"wafd",
|
|
"code":"54",
|
|
"des":"If you confirm that an attack event on the Events page is a false alarm, you can handle the event as false alarm by ignoring the URL and rule ID in basic web protection, ",
|
|
"doc_type":"usermanual",
|
|
"kw":"Handling False Alarms,Event Management,User Guide",
|
|
"title":"Handling False Alarms",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0077.html",
|
|
"product_code":"wafd",
|
|
"code":"55",
|
|
"des":"This topic describes how to download events (logged and blocked events) data for the last five days. One or more CSV files containing the event data of the current day wi",
|
|
"doc_type":"usermanual",
|
|
"kw":"Downloading Events Data,Event Management,User Guide",
|
|
"title":"Downloading Events Data",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0172.html",
|
|
"product_code":"wafd",
|
|
"code":"56",
|
|
"des":"After you authorize WAF to access Log Tank Service (LTS), you can use the WAF logs recorded by LTS for quick and efficient real-time analysis, device O&M management, and ",
|
|
"doc_type":"usermanual",
|
|
"kw":"Enabling LTS for WAF Logging,User Guide",
|
|
"title":"Enabling LTS for WAF Logging",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0055.html",
|
|
"product_code":"wafd",
|
|
"code":"57",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Policy Management",
|
|
"title":"Policy Management",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0074.html",
|
|
"product_code":"wafd",
|
|
"code":"58",
|
|
"des":"A policy is a combination of rules, such as basic web protection, blacklist, whitelist, and precise protection rules. A policy can be applied to multiple domain names, bu",
|
|
"doc_type":"usermanual",
|
|
"kw":"Creating a Protection Policy,Policy Management,User Guide",
|
|
"title":"Creating a Protection Policy",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0061.html",
|
|
"product_code":"wafd",
|
|
"code":"59",
|
|
"des":"This topic describes how to add rules to one or more policies.If you have enabled enterprise projects, ensure that you have all operation permissions for the project wher",
|
|
"doc_type":"usermanual",
|
|
"kw":"Adding Rules to One or More Policies,Policy Management,User Guide",
|
|
"title":"Adding Rules to One or More Policies",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0075.html",
|
|
"product_code":"wafd",
|
|
"code":"60",
|
|
"des":"This topic describes how to apply a policy to your protected website.A website has been added to WAF.A protected domain name can use only one policy, but one policy can b",
|
|
"doc_type":"usermanual",
|
|
"kw":"Applying a Policy to Your Website,Policy Management,User Guide",
|
|
"title":"Applying a Policy to Your Website",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0253.html",
|
|
"product_code":"wafd",
|
|
"code":"61",
|
|
"des":"This topic describes how to manage your dedicated WAF instances (or engines), including viewing instance information, upgrading the instance edition, or deleting an insta",
|
|
"doc_type":"usermanual",
|
|
"kw":"Dedicated WAF Engine Management,User Guide",
|
|
"title":"Dedicated WAF Engine Management",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0317.html",
|
|
"product_code":"wafd",
|
|
"code":"62",
|
|
"des":"Creating a projectLog in to the management console, click the username in the upper right corner, and select Identity and Access Management. In the navigation pane on the",
|
|
"doc_type":"usermanual",
|
|
"kw":"Managing Projects and Enterprise Projects,User Guide",
|
|
"title":"Managing Projects and Enterprise Projects",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0096.html",
|
|
"product_code":"wafd",
|
|
"code":"63",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Permissions Management",
|
|
"title":"Permissions Management",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0243.html",
|
|
"product_code":"wafd",
|
|
"code":"64",
|
|
"des":"Custom policies can be created to supplement the system-defined policies of WAF.Example 1: Allowing users to query the protected domain list{\n \"Version\": \"1.1\",\n ",
|
|
"doc_type":"usermanual",
|
|
"kw":"WAF Custom Policies,Permissions Management,User Guide",
|
|
"title":"WAF Custom Policies",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0244.html",
|
|
"product_code":"wafd",
|
|
"code":"65",
|
|
"des":"This topic describes fine-grained permissions management for your WAF instances. If your account does not need individual IAM users, then you may skip over this topic.By ",
|
|
"doc_type":"usermanual",
|
|
"kw":"WAF Permissions and Supported Actions,Permissions Management,User Guide",
|
|
"title":"WAF Permissions and Supported Actions",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0058.html",
|
|
"product_code":"wafd",
|
|
"code":"66",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Key Operations Recorded by CTS",
|
|
"title":"Key Operations Recorded by CTS",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0059.html",
|
|
"product_code":"wafd",
|
|
"code":"67",
|
|
"des":"CTS provides records of operations on WAF. With CTS, you can query, audit, and backtrack these operations. For details, see the Cloud Trace Service User Guide.",
|
|
"doc_type":"usermanual",
|
|
"kw":"WAF Operations Recorded by CTS,Key Operations Recorded by CTS,User Guide",
|
|
"title":"WAF Operations Recorded by CTS",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0060.html",
|
|
"product_code":"wafd",
|
|
"code":"68",
|
|
"des":"After you enable CTS, the system starts recording operations on WAF. Operation records for the last seven days can be viewed on the CTS console.Trace Type, Trace Source, ",
|
|
"doc_type":"usermanual",
|
|
"kw":"Viewing an Audit Trace,Key Operations Recorded by CTS,User Guide",
|
|
"title":"Viewing an Audit Trace",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_1372.html",
|
|
"product_code":"wafd",
|
|
"code":"69",
|
|
"des":"This topic describes metrics reported by dedicated WAF to Cloud Eye as well as their namespaces and dimensions. You can use APIs provided by Cloud Eye to query the metric",
|
|
"doc_type":"usermanual",
|
|
"kw":"Monitored Metrics,User Guide",
|
|
"title":"Monitored Metrics",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0022.html",
|
|
"product_code":"wafd",
|
|
"code":"70",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"FAQs",
|
|
"title":"FAQs",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0025.html",
|
|
"product_code":"wafd",
|
|
"code":"71",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"About WAF",
|
|
"title":"About WAF",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0292.html",
|
|
"product_code":"wafd",
|
|
"code":"72",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"WAF Functions",
|
|
"title":"WAF Functions",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0029.html",
|
|
"product_code":"wafd",
|
|
"code":"73",
|
|
"des":"A WAF instance can protect IP addresses.For details about how to add a domain name to WAF, see How Do I Add a Domain Name/IP Address to WAF?",
|
|
"doc_type":"usermanual",
|
|
"kw":"Can WAF Protect an IP Address?,WAF Functions,User Guide",
|
|
"title":"Can WAF Protect an IP Address?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0134.html",
|
|
"product_code":"wafd",
|
|
"code":"74",
|
|
"des":"WAF can protect domain names or IP addresses.",
|
|
"doc_type":"usermanual",
|
|
"kw":"What Objects Does WAF Protect?,WAF Functions,User Guide",
|
|
"title":"What Objects Does WAF Protect?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0026.html",
|
|
"product_code":"wafd",
|
|
"code":"75",
|
|
"des":"WAF is deployed on the cloud, which is irrelevant to an OS. Therefore, WAF supports any OS. A domain name server on any OS can be connected to WAF for protection.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Which OSs Does WAF Support?,WAF Functions,User Guide",
|
|
"title":"Which OSs Does WAF Support?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0030.html",
|
|
"product_code":"wafd",
|
|
"code":"76",
|
|
"des":"WAF provides protection at seven layers, namely, the physical layer, data link layer, network layer, transport layer, session layer, presentation layer, and application l",
|
|
"doc_type":"usermanual",
|
|
"kw":"Which Layers Does WAF Provide Protection At?,WAF Functions,User Guide",
|
|
"title":"Which Layers Does WAF Provide Protection At?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0149.html",
|
|
"product_code":"wafd",
|
|
"code":"77",
|
|
"des":"WAF caches only static web pages that are configured with web tamper protection and sends the cached web pages that are not tampered with to web visitors.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Does WAF Support File Caching?,WAF Functions,User Guide",
|
|
"title":"Does WAF Support File Caching?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0181.html",
|
|
"product_code":"wafd",
|
|
"code":"78",
|
|
"des":"A protection IP address in WAF is the IP address of a website you use WAF to protect.The basic web protection function of WAF can detect and block threats such as third-p",
|
|
"doc_type":"usermanual",
|
|
"kw":"About WAF Protection,WAF Functions,User Guide",
|
|
"title":"About WAF Protection",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0184.html",
|
|
"product_code":"wafd",
|
|
"code":"79",
|
|
"des":"No. You can configure a one-way SSL certificate on WAF.If you set Client Protocol to HTTPS when adding a website to WAF, you will be required to upload a certificate and ",
|
|
"doc_type":"usermanual",
|
|
"kw":"Does WAF Support Two-Way SSL Authentication?,WAF Functions,User Guide",
|
|
"title":"Does WAF Support Two-Way SSL Authentication?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0229.html",
|
|
"product_code":"wafd",
|
|
"code":"80",
|
|
"des":"WAF supports access control over content at the application layer. HTTP and HTTPS are both application layer protocols.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Does WAF Support Application Layer Protocol- and Content-Based Access Control?,WAF Functions,User Gu",
|
|
"title":"Does WAF Support Application Layer Protocol- and Content-Based Access Control?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0187.html",
|
|
"product_code":"wafd",
|
|
"code":"81",
|
|
"des":"The built-in detection of WAF checks POST data, and web shells are the files submitted in POST requests. WAF checks all data, such as forms and JSON files in POST request",
|
|
"doc_type":"usermanual",
|
|
"kw":"Can WAF Check the Body I Add to a POST Request?,WAF Functions,User Guide",
|
|
"title":"Can WAF Check the Body I Add to a POST Request?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0257.html",
|
|
"product_code":"wafd",
|
|
"code":"82",
|
|
"des":"No. However, you can customize a CC attack protection rule to restrict access to a specific URL on your website based on an IP address, cookie, or Referer, mitigating CC ",
|
|
"doc_type":"usermanual",
|
|
"kw":"Can WAF Limit the Access Speed of a Domain Name?,WAF Functions,User Guide",
|
|
"title":"Can WAF Limit the Access Speed of a Domain Name?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0259.html",
|
|
"product_code":"wafd",
|
|
"code":"83",
|
|
"des":"Yes.The multipart/form-data indicates that the browser uses a form to upload files. For example, if an attachment is added to an email, the attachment is usually uploaded",
|
|
"doc_type":"usermanual",
|
|
"kw":"Can WAF Block Data Packets in multipart/form-data Format?,WAF Functions,User Guide",
|
|
"title":"Can WAF Block Data Packets in multipart/form-data Format?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0256.html",
|
|
"product_code":"wafd",
|
|
"code":"84",
|
|
"des":"Yes. You can deploy dedicated engine WAF instances in a VPC.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Can a WAF Instance Be Deployed in the VPC?,WAF Functions,User Guide",
|
|
"title":"Can a WAF Instance Be Deployed in the VPC?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0211.html",
|
|
"product_code":"wafd",
|
|
"code":"85",
|
|
"des":"No. WAF can only detect and restrict source IP addresses.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Can WAF Block URL Requests That Contain Special Characters?,WAF Functions,User Guide",
|
|
"title":"Can WAF Block URL Requests That Contain Special Characters?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0280.html",
|
|
"product_code":"wafd",
|
|
"code":"86",
|
|
"des":"WAF cannot block business-related attacks, such as spam and malicious user registrations. To prevent these attacks, configure the registration verification mechanism on y",
|
|
"doc_type":"usermanual",
|
|
"kw":"Can WAF Block Spam and Malicious User Registrations?,WAF Functions,User Guide",
|
|
"title":"Can WAF Block Spam and Malicious User Registrations?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0212.html",
|
|
"product_code":"wafd",
|
|
"code":"87",
|
|
"des":"If the request data for calling other APIs on the web page is included in the domain names protected by WAF, the request data passes through WAF. WAF checks the request d",
|
|
"doc_type":"usermanual",
|
|
"kw":"Can WAF Block Requests for Calling Other APIs from Web Pages?,WAF Functions,User Guide",
|
|
"title":"Can WAF Block Requests for Calling Other APIs from Web Pages?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0216.html",
|
|
"product_code":"wafd",
|
|
"code":"88",
|
|
"des":"No. WAF does not support session cookies.WAF allows you to configure CC attack protection rules to limit the access frequency of a specific path (URL) in a single cookie ",
|
|
"doc_type":"usermanual",
|
|
"kw":"Can I Configure Session Cookies in WAF?,WAF Functions,User Guide",
|
|
"title":"Can I Configure Session Cookies in WAF?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0193.html",
|
|
"product_code":"wafd",
|
|
"code":"89",
|
|
"des":"No. WAF does not block user-defined POST requests. Figure 1 shows the detection process of the WAF built-in protection rules for original HTTP/HTTPS requests.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Does WAF Block Customized POST Requests?,WAF Functions,User Guide",
|
|
"title":"Does WAF Block Customized POST Requests?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0258.html",
|
|
"product_code":"wafd",
|
|
"code":"90",
|
|
"des":"No. WAF supports the blacklist and whitelist rules to block, log only, or permit access requests from specified IP addresses or IP address segments.You can configure blac",
|
|
"doc_type":"usermanual",
|
|
"kw":"Can WAF Limit Access Through Domain Names?,WAF Functions,User Guide",
|
|
"title":"Can WAF Limit Access Through Domain Names?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0148.html",
|
|
"product_code":"wafd",
|
|
"code":"91",
|
|
"des":"Unlike the traditional firewalls, WAF does not have an Intrusion Prevention System (IPS). WAF supports intrusion detection of only HTTP/HTTPS requests.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Does WAF Have the IPS Module?,WAF Functions,User Guide",
|
|
"title":"Does WAF Have the IPS Module?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0027.html",
|
|
"product_code":"wafd",
|
|
"code":"92",
|
|
"des":"WAF is deployed on the cloud.Web Application Firewall (WAF) keeps web services stable and secure. It examines all HTTP and HTTPS requests to detect and block the followin",
|
|
"doc_type":"usermanual",
|
|
"kw":"Which Web Service Framework Protocols Does WAF Support?,WAF Functions,User Guide",
|
|
"title":"Which Web Service Framework Protocols Does WAF Support?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0329.html",
|
|
"product_code":"wafd",
|
|
"code":"93",
|
|
"des":"Yes. WAF can protect HTTP and HTTPS applications.If a website uses the HTTP Strict Transport Security (HSTS) policy, the client (such as a browser) is forced to use HTTPS",
|
|
"doc_type":"usermanual",
|
|
"kw":"Can WAF Protect Websites Accessed Through HSTS or NTLM Authentication?,WAF Functions,User Guide",
|
|
"title":"Can WAF Protect Websites Accessed Through HSTS or NTLM Authentication?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0338.html",
|
|
"product_code":"wafd",
|
|
"code":"94",
|
|
"des":"Nginx directly forwards access requests to the origin server, while WAF detects and filters out malicious traffic and then forwards only the normal access requests to the",
|
|
"doc_type":"usermanual",
|
|
"kw":"What Are the Differences Between WAF Forwarding and Nginx Forwarding?,WAF Functions,User Guide",
|
|
"title":"What Are the Differences Between WAF Forwarding and Nginx Forwarding?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0345.html",
|
|
"product_code":"wafd",
|
|
"code":"95",
|
|
"des":"WAF protects user data on the application layer. It supports cache configuration on static web pages. When a user accesses a web page, the system returns a cached page to",
|
|
"doc_type":"usermanual",
|
|
"kw":"Does WAF Cache Website Data?,WAF Functions,User Guide",
|
|
"title":"Does WAF Cache Website Data?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0255.html",
|
|
"product_code":"wafd",
|
|
"code":"96",
|
|
"des":"WAF is a software firewall.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Is WAF a Hardware Firewall or a Software Firewall?,WAF Functions,User Guide",
|
|
"title":"Is WAF a Hardware Firewall or a Software Firewall?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0456.html",
|
|
"product_code":"wafd",
|
|
"code":"97",
|
|
"des":"Yes. HTTP/2 is not supported between WAF and the origin server. This means if you enable HTTP/2 in WAF, WAF can process HTTP/2 requests from clients, but WAF can only for",
|
|
"doc_type":"usermanual",
|
|
"kw":"Is There Any Impact on Origin Servers If I Enable HTTP/2 in WAF?,WAF Functions,User Guide",
|
|
"title":"Is There Any Impact on Origin Servers If I Enable HTTP/2 in WAF?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0457.html",
|
|
"product_code":"wafd",
|
|
"code":"98",
|
|
"des":"A Structured Query Language (SQL) injection is a common web attack. The attacker injects malicious SQL commands into database query strings to deceive the server into exe",
|
|
"doc_type":"usermanual",
|
|
"kw":"How Does WAF Detect SQL Injection and XSS Attacks?,WAF Functions,User Guide",
|
|
"title":"How Does WAF Detect SQL Injection and XSS Attacks?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0458.html",
|
|
"product_code":"wafd",
|
|
"code":"99",
|
|
"des":"Yes. WAF basic web protection rules can defend against the Apache Struts2 remote code execution vulnerability (CVE-2021-31805).",
|
|
"doc_type":"usermanual",
|
|
"kw":"Can WAF Defend Against the Apache Struts2 Remote Code Execution Vulnerability (CVE-2021-31805)?,WAF ",
|
|
"title":"Can WAF Defend Against the Apache Struts2 Remote Code Execution Vulnerability (CVE-2021-31805)?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0459.html",
|
|
"product_code":"wafd",
|
|
"code":"100",
|
|
"des":"Dedicated WAF instances cannot protect origin servers in the VPCs that are different from where those WAF instances locate. To protect such origin servers, apply for dedi",
|
|
"doc_type":"usermanual",
|
|
"kw":"Does a Dedicated WAF Instance Support Cross-VPC Protection?,WAF Functions,User Guide",
|
|
"title":"Does a Dedicated WAF Instance Support Cross-VPC Protection?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0293.html",
|
|
"product_code":"wafd",
|
|
"code":"101",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"WAF Usage",
|
|
"title":"WAF Usage",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0320.html",
|
|
"product_code":"wafd",
|
|
"code":"102",
|
|
"des":"When a third-party vulnerability scanning tool scans the website whose domain name has been connected to WAF, the scan result shows that some standard ports (for example,",
|
|
"doc_type":"usermanual",
|
|
"kw":"Why Does the Vulnerability Scanning Tool Report Disabled Non-standard Ports for My WAF-Protected Web",
|
|
"title":"Why Does the Vulnerability Scanning Tool Report Disabled Non-standard Ports for My WAF-Protected Website?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0218.html",
|
|
"product_code":"wafd",
|
|
"code":"103",
|
|
"des":"WAF protects web application pages. After your website is connected to WAF, there is no impact on your email port or email sending or receiving.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Does WAF Affect Email Ports or Email Receiving and Sending?,WAF Usage,User Guide",
|
|
"title":"Does WAF Affect Email Ports or Email Receiving and Sending?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0062.html",
|
|
"product_code":"wafd",
|
|
"code":"104",
|
|
"des":"After you connect a website to your WAF instance, WAF works as a reverse proxy between the client and the server. The real IP address of the server is hidden and only the",
|
|
"doc_type":"usermanual",
|
|
"kw":"How Do I Obtain the Real IP Address of a Web Visitor?,WAF Usage,User Guide",
|
|
"title":"How Do I Obtain the Real IP Address of a Web Visitor?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0189.html",
|
|
"product_code":"wafd",
|
|
"code":"105",
|
|
"des":"WAF checks both the request header and body. For example, WAF detects the request body, such as form, XML, and JSON data, and blocks requests that do not comply with prot",
|
|
"doc_type":"usermanual",
|
|
"kw":"How Does WAF Block Requests?,WAF Usage,User Guide",
|
|
"title":"How Does WAF Block Requests?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0196.html",
|
|
"product_code":"wafd",
|
|
"code":"106",
|
|
"des":"You can view security events such as file inclusion in WAF protection events to quickly locate attack sources or analyze attack events.Program developers write repeatedly",
|
|
"doc_type":"usermanual",
|
|
"kw":"What Are Local File Inclusion and Remote File Inclusion?,WAF Usage,User Guide",
|
|
"title":"What Are Local File Inclusion and Remote File Inclusion?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0179.html",
|
|
"product_code":"wafd",
|
|
"code":"107",
|
|
"des":"Queries Per Second (QPS) indicates the number of requests per second. For example, an HTTP GET request is also called a query. The number of requests is the total number ",
|
|
"doc_type":"usermanual",
|
|
"kw":"What Is the Difference Between QPS and the Number of Requests?,WAF Usage,User Guide",
|
|
"title":"What Is the Difference Between QPS and the Number of Requests?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0222.html",
|
|
"product_code":"wafd",
|
|
"code":"108",
|
|
"des":"The number of concurrent requests refers to the number of requests that the system can process simultaneously. When it comes to a website, concurrent requests refer to th",
|
|
"doc_type":"usermanual",
|
|
"kw":"What Are Concurrent Requests?,WAF Usage,User Guide",
|
|
"title":"What Are Concurrent Requests?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0195.html",
|
|
"product_code":"wafd",
|
|
"code":"109",
|
|
"des":"If the certificate is mounted on ELB, all requests sent through WAF are encrypted. For HTTPS services, you must upload the certificate to WAF so that WAF can detect the d",
|
|
"doc_type":"usermanual",
|
|
"kw":"Can WAF Block Requests When a Certificate Is Mounted on ELB?,WAF Usage,User Guide",
|
|
"title":"Can WAF Block Requests When a Certificate Is Mounted on ELB?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0339.html",
|
|
"product_code":"wafd",
|
|
"code":"110",
|
|
"des":"Enabling WAF does not interrupt your existing workloads or affect the running status of your origin servers. No additional operation (such as shutdown or restart) on the ",
|
|
"doc_type":"usermanual",
|
|
"kw":"Does WAF Affect My Existing Workloads and Server Running?,WAF Usage,User Guide",
|
|
"title":"Does WAF Affect My Existing Workloads and Server Running?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0346.html",
|
|
"product_code":"wafd",
|
|
"code":"111",
|
|
"des":"You can configure an access control rule on the origin server to allow only WAF back-to-source IP addresses to access the origin server. This prevents hackers from bypass",
|
|
"doc_type":"usermanual",
|
|
"kw":"How Do I Configure My Server to Allow Only Requests from WAF?,WAF Usage,User Guide",
|
|
"title":"How Do I Configure My Server to Allow Only Requests from WAF?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0347.html",
|
|
"product_code":"wafd",
|
|
"code":"112",
|
|
"des":"After a domain name or IP address is connected to WAF, WAF inserts fields such as HWWAFSESID and HWWAFSESTIME into the cookie of customer requests. These fields are used ",
|
|
"doc_type":"usermanual",
|
|
"kw":"Why Do Cookies Contain the HWWAFSESID or HWWAFSESTIME field?,WAF Usage,User Guide",
|
|
"title":"Why Do Cookies Contain the HWWAFSESID or HWWAFSESTIME field?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0350.html",
|
|
"product_code":"wafd",
|
|
"code":"113",
|
|
"des":"In this case, the reverse proxy server will not be affected after the website is connected to WAF. WAF works as a reverse proxy between the client and your website server",
|
|
"doc_type":"usermanual",
|
|
"kw":"How Do I Configure WAF If a Reverse Proxy Server Is Deployed for My Website?,WAF Usage,User Guide",
|
|
"title":"How Do I Configure WAF If a Reverse Proxy Server Is Deployed for My Website?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0361.html",
|
|
"product_code":"wafd",
|
|
"code":"114",
|
|
"des":"WAF preferentially forwards access requests to the single domain name. If the single domain name cannot be identified, access requests will be forwarded to the wildcard d",
|
|
"doc_type":"usermanual",
|
|
"kw":"How Does WAF Forward Access Requests When Both a Wildcard Domain Name and a Single Domain Name Are C",
|
|
"title":"How Does WAF Forward Access Requests When Both a Wildcard Domain Name and a Single Domain Name Are Connected to WAF?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0366.html",
|
|
"product_code":"wafd",
|
|
"code":"115",
|
|
"des":"No. After a website is connected to WAF, all website access requests are forwarded to WAF first. WAF detects and filters out malicious attack traffic, and returns normal ",
|
|
"doc_type":"usermanual",
|
|
"kw":"Does WAF Affect Data Transmission from the Internal Network to an External Network?,WAF Usage,User G",
|
|
"title":"Does WAF Affect Data Transmission from the Internal Network to an External Network?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0467.html",
|
|
"product_code":"wafd",
|
|
"code":"116",
|
|
"des":"No modifications are required in WAF, but you are required to whitelist WAF IP addresses on the origin servers.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Do I Need to Make Some Changes in WAF If the Security Group for Origin Server (Address) Is Changed?,",
|
|
"title":"Do I Need to Make Some Changes in WAF If the Security Group for Origin Server (Address) Is Changed?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0124.html",
|
|
"product_code":"wafd",
|
|
"code":"117",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Website Domain Name Access Configuration",
|
|
"title":"Website Domain Name Access Configuration",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0299.html",
|
|
"product_code":"wafd",
|
|
"code":"118",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Domain Name and Port Configuration",
|
|
"title":"Domain Name and Port Configuration",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0176.html",
|
|
"product_code":"wafd",
|
|
"code":"119",
|
|
"des":"After you connect a domain name or IP address of the website you want to protect to WAF, WAF works as a reverse proxy between the client and the server. The real IP addre",
|
|
"doc_type":"usermanual",
|
|
"kw":"How Do I Add a Domain Name/IP Address to WAF?,Domain Name and Port Configuration,User Guide",
|
|
"title":"How Do I Add a Domain Name/IP Address to WAF?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0032.html",
|
|
"product_code":"wafd",
|
|
"code":"120",
|
|
"des":"In addition to standard ports 80 and 443, WAF supports multiple non-standard ports. The non-standard ports vary depending on the edition and billing mode you select.Each ",
|
|
"doc_type":"usermanual",
|
|
"kw":"Which Non-Standard Ports Does WAF Support?,Domain Name and Port Configuration,User Guide",
|
|
"title":"Which Non-Standard Ports Does WAF Support?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0318.html",
|
|
"product_code":"wafd",
|
|
"code":"121",
|
|
"des":"To use a dedicated WAF instance to protect a non-standard port that is not supported by dedicated instance, configure an ELB load balancer to distribute traffic to any no",
|
|
"doc_type":"usermanual",
|
|
"kw":"How Do I Use a Dedicated WAF Instance to Protect Non-Standard Ports That Are Not Supported by the De",
|
|
"title":"How Do I Use a Dedicated WAF Instance to Protect Non-Standard Ports That Are Not Supported by the Dedicated Instance?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0275.html",
|
|
"product_code":"wafd",
|
|
"code":"122",
|
|
"des":"Yes. If there are multiple domain names pointing to the same origin server, you can connect these domain names to WAF for protection.WAF protects domain names or IP addre",
|
|
"doc_type":"usermanual",
|
|
"kw":"Can WAF Protect Multiple Domain Names That Point to the Same Origin Server?,Domain Name and Port Con",
|
|
"title":"Can WAF Protect Multiple Domain Names That Point to the Same Origin Server?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0105.html",
|
|
"product_code":"wafd",
|
|
"code":"123",
|
|
"des":"Before using WAF, you need to add domain names to be protected to WAF based on your web service protection requirements. WAF supports addition of single domain names and ",
|
|
"doc_type":"usermanual",
|
|
"kw":"How Do I Configure Domain Names to Be Protected When Adding Domain Names?,Domain Name and Port Confi",
|
|
"title":"How Do I Configure Domain Names to Be Protected When Adding Domain Names?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0279.html",
|
|
"product_code":"wafd",
|
|
"code":"124",
|
|
"des":"No. When you add a domain name to WAF, configure the server port to the port of the protected website. The origin server port is the service port used by WAF to forward y",
|
|
"doc_type":"usermanual",
|
|
"kw":"Do I Have to Configure the Same Port as That of the Origin Server When Adding a Domain Name to WAF?,",
|
|
"title":"Do I Have to Configure the Same Port as That of the Origin Server When Adding a Domain Name to WAF?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0225.html",
|
|
"product_code":"wafd",
|
|
"code":"125",
|
|
"des":"WAF protects your web application through its domain name and the corresponding service port. When you add a domain name to WAF, you specify the domain name and the port ",
|
|
"doc_type":"usermanual",
|
|
"kw":"What Can I Do If One of Ports on an Origin Server Does Not Require WAF Protection?,Domain Name and P",
|
|
"title":"What Can I Do If One of Ports on an Origin Server Does Not Require WAF Protection?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0157.html",
|
|
"product_code":"wafd",
|
|
"code":"126",
|
|
"des":"Prepare information required for connecting a domain name or IP address to WAF based on the mode of WAF instance you plan to buy.The following data is required:Domain nam",
|
|
"doc_type":"usermanual",
|
|
"kw":"What Data Is Required for Connecting a Domain Name/IP Address to WAF?,Domain Name and Port Configura",
|
|
"title":"What Data Is Required for Connecting a Domain Name/IP Address to WAF?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0041.html",
|
|
"product_code":"wafd",
|
|
"code":"127",
|
|
"des":"To delete a website from WAF, see Removing a Protected Website from WAF. Before you start, get yourself familiar with the following precautions:Before removing a website ",
|
|
"doc_type":"usermanual",
|
|
"kw":"How Do I Safely Delete a Protected Domain Name?,Domain Name and Port Configuration,User Guide",
|
|
"title":"How Do I Safely Delete a Protected Domain Name?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0232.html",
|
|
"product_code":"wafd",
|
|
"code":"128",
|
|
"des":"After a domain name is added to WAF, you cannot change its name. If you want to change the protected domain name, you are advised to delete the original one and add the d",
|
|
"doc_type":"usermanual",
|
|
"kw":"Can I Change the Domain Name That Has Been Added to WAF?,Domain Name and Port Configuration,User Gui",
|
|
"title":"Can I Change the Domain Name That Has Been Added to WAF?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0104.html",
|
|
"product_code":"wafd",
|
|
"code":"129",
|
|
"des":"When configuring multiple server addresses for the same domain name, pay attention to the following:For domain names mapping to non-standard portsThe client protocol, ser",
|
|
"doc_type":"usermanual",
|
|
"kw":"What Are the Precautions for Configuring Multiple Server Addresses for Backend Servers?,Domain Name ",
|
|
"title":"What Are the Precautions for Configuring Multiple Server Addresses for Backend Servers?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0190.html",
|
|
"product_code":"wafd",
|
|
"code":"130",
|
|
"des":"Yes. When adding a domain name to WAF, you can configure a single domain name or a wildcard domain name based on your service requirements. The details are as follows:Sin",
|
|
"doc_type":"usermanual",
|
|
"kw":"Does WAF Support Wildcard Domain Names?,Domain Name and Port Configuration,User Guide",
|
|
"title":"Does WAF Support Wildcard Domain Names?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0301.html",
|
|
"product_code":"wafd",
|
|
"code":"131",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Certificate Management",
|
|
"title":"Certificate Management",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0135.html",
|
|
"product_code":"wafd",
|
|
"code":"132",
|
|
"des":"Each domain name must correspond to a certificate. A wildcard domain name can only be used for a wildcard domain certificate. If you only have single-domain certificates,",
|
|
"doc_type":"usermanual",
|
|
"kw":"How Do I Select a Certificate When Configuring a Wildcard Domain Name?,Certificate Management,User G",
|
|
"title":"How Do I Select a Certificate When Configuring a Wildcard Domain Name?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0234.html",
|
|
"product_code":"wafd",
|
|
"code":"133",
|
|
"des":"You can select a created certificate or import a new certificate. You need to import the certificate that has been uploaded to ELB to WAF.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Do I Need to Import the Certificates That Have Been Uploaded to ELB to WAF?,Certificate Management,U",
|
|
"title":"Do I Need to Import the Certificates That Have Been Uploaded to ELB to WAF?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0313.html",
|
|
"product_code":"wafd",
|
|
"code":"134",
|
|
"des":"Only .pem certificates can be used in WAF. If the certificate is not in .pem format, convert it into .pem locally by referring to Table 1 before uploading it.Certificate ",
|
|
"doc_type":"usermanual",
|
|
"kw":"How Do I Convert a Certificate into PEM Format?,Certificate Management,User Guide",
|
|
"title":"How Do I Convert a Certificate into PEM Format?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0127.html",
|
|
"product_code":"wafd",
|
|
"code":"135",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Service Interruption Check",
|
|
"title":"Service Interruption Check",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0066.html",
|
|
"product_code":"wafd",
|
|
"code":"136",
|
|
"des":"If an error, such as 404 Not Found, 502 Bad Gateway, or 504 Gateway Timeout, occurs after a domain name is connected to WAF, use the following methods to locate the cause",
|
|
"doc_type":"usermanual",
|
|
"kw":"404,502,504,How Do I Troubleshoot 404/502/504 Errors?,Service Interruption Check,User Guide",
|
|
"title":"How Do I Troubleshoot 404/502/504 Errors?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0278.html",
|
|
"product_code":"wafd",
|
|
"code":"137",
|
|
"des":"If Access Progress/Status for a website you have added to WAF is Inaccessible, the connection between WAF and the website domain name or IP address fails to be establishe",
|
|
"doc_type":"usermanual",
|
|
"kw":"Why Is My Domain Name or IP Address Inaccessible?,Service Interruption Check,User Guide",
|
|
"title":"Why Is My Domain Name or IP Address Inaccessible?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0038.html",
|
|
"product_code":"wafd",
|
|
"code":"138",
|
|
"des":"Once an attack hits a WAF rule, WAF will respond to the attack immediately according to the protective action (Log only or Block) you configured for the rule and display ",
|
|
"doc_type":"usermanual",
|
|
"kw":"How Do I Handle False Alarms as WAF Blocks Normal Requests to My Website?,Service Interruption Check",
|
|
"title":"How Do I Handle False Alarms as WAF Blocks Normal Requests to My Website?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0335.html",
|
|
"product_code":"wafd",
|
|
"code":"139",
|
|
"des":"After a website is connected to WAF, a normal access request is blocked by WAF. On the Events page, the corresponding Event Type reads Invalid request, and the Handle Fal",
|
|
"doc_type":"usermanual",
|
|
"kw":"Why Does WAF Block Normal Requests as Invalid Requests?,Service Interruption Check,User Guide",
|
|
"title":"Why Does WAF Block Normal Requests as Invalid Requests?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0160.html",
|
|
"product_code":"wafd",
|
|
"code":"140",
|
|
"des":"The default timeout duration for connections between a browser and WAF is 120 seconds, which cannot be manually set.The default timeout duration for connections between W",
|
|
"doc_type":"usermanual",
|
|
"kw":"What Is the Connection Timeout Duration of WAF? Can I Manually Set the Timeout Duration?,Service Int",
|
|
"title":"What Is the Connection Timeout Duration of WAF? Can I Manually Set the Timeout Duration?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0117.html",
|
|
"product_code":"wafd",
|
|
"code":"141",
|
|
"des":"After a domain name is connected to WAF, if the system displays a message indicating that there are excessive redirection times when a user requests to access the target ",
|
|
"doc_type":"usermanual",
|
|
"kw":"How Do I Solve the Problem of Excessive Redirection Times?,Service Interruption Check,User Guide",
|
|
"title":"How Do I Solve the Problem of Excessive Redirection Times?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0093.html",
|
|
"product_code":"wafd",
|
|
"code":"142",
|
|
"des":"If your visitors receive a page similar to the one in Figure 1 when they try to access your website through a mobile phone, an incomplete certificate chain is uploaded wh",
|
|
"doc_type":"usermanual",
|
|
"kw":"Why Are HTTPS Requests Denied on Some Mobile Phones?,Service Interruption Check,User Guide",
|
|
"title":"Why Are HTTPS Requests Denied on Some Mobile Phones?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0082.html",
|
|
"product_code":"wafd",
|
|
"code":"143",
|
|
"des":"If the certificate provided by the certificate authority is not found in the built-in trust store on your platform and the certificate chain does not have a certificate a",
|
|
"doc_type":"usermanual",
|
|
"kw":"How Do I Fix an Incomplete Certificate Chain?,Service Interruption Check,User Guide",
|
|
"title":"How Do I Fix an Incomplete Certificate Chain?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_1082.html",
|
|
"product_code":"wafd",
|
|
"code":"144",
|
|
"des":"After an HTTPS certificate is uploaded to the AAD or WAF console, a message is displayed indicating that the certificate and key do not match.How Do I Fix an Incomplete C",
|
|
"doc_type":"usermanual",
|
|
"kw":"Why Does My Certificate Not Match the Key?,Service Interruption Check,User Guide",
|
|
"title":"Why Does My Certificate Not Match the Key?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0198.html",
|
|
"product_code":"wafd",
|
|
"code":"145",
|
|
"des":"If the request contains malicious load and is intercepted by WAF, error 418 is reported when you access the domain name protected by WAF. You can view WAF protection logs",
|
|
"doc_type":"usermanual",
|
|
"kw":"Why Am I Seeing Error Code 418?,Service Interruption Check,User Guide",
|
|
"title":"Why Am I Seeing Error Code 418?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0199.html",
|
|
"product_code":"wafd",
|
|
"code":"146",
|
|
"des":"If a request passes through WAF twice, WAF blocks the request to prevent an infinite loop. In this case, error 523 is displayed when you access the domain name protected ",
|
|
"doc_type":"usermanual",
|
|
"kw":"Why Am I Seeing Error Code 523?,Service Interruption Check,User Guide",
|
|
"title":"Why Am I Seeing Error Code 523?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0200.html",
|
|
"product_code":"wafd",
|
|
"code":"147",
|
|
"des":"After you connect the domain name of your website to WAF, all website requests are forwarded to WAF first. Then, WAF forwards only the normal traffic to the origin server",
|
|
"doc_type":"usermanual",
|
|
"kw":"Why Does the Website Login Page Continuously Refreshed After a Domain Name Is Connected to WAF?,Serv",
|
|
"title":"Why Does the Website Login Page Continuously Refreshed After a Domain Name Is Connected to WAF?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0201.html",
|
|
"product_code":"wafd",
|
|
"code":"148",
|
|
"des":"In this case, add two forwarding policies. One is HTTP to HTTP forwarding, and the other is HTTPS to HTTPS forwarding.For details about how to configure a forwarding rule",
|
|
"doc_type":"usermanual",
|
|
"kw":"Why Does the Requested Page Respond Slowly After the HTTP Forwarding Policy Is Configured?,Service I",
|
|
"title":"Why Does the Requested Page Respond Slowly After the HTTP Forwarding Policy Is Configured?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0100.html",
|
|
"product_code":"wafd",
|
|
"code":"149",
|
|
"des":"After your website is connected to WAF, the file visitors can upload each time cannot exceed 512 MB.To upload a file greater than 512 MB, upload the file through:IP addre",
|
|
"doc_type":"usermanual",
|
|
"kw":"How Can I Upload Files After the Website Is Connected to WAF?,Service Interruption Check,User Guide",
|
|
"title":"How Can I Upload Files After the Website Is Connected to WAF?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0063.html",
|
|
"product_code":"wafd",
|
|
"code":"150",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Protection Rule Configuration",
|
|
"title":"Protection Rule Configuration",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0304.html",
|
|
"product_code":"wafd",
|
|
"code":"151",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Basic Web Protection",
|
|
"title":"Basic Web Protection",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0053.html",
|
|
"product_code":"wafd",
|
|
"code":"152",
|
|
"des":"This FAQ guides you to switch the mode of basic web protection to Block.Perform the following operations:Log only and Block are merely modes of basic web protection. CC a",
|
|
"doc_type":"usermanual",
|
|
"kw":"How Do I Switch the Mode of Basic Web Protection from Log Only to Block?,Basic Web Protection,User G",
|
|
"title":"How Do I Switch the Mode of Basic Web Protection from Log Only to Block?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0204.html",
|
|
"product_code":"wafd",
|
|
"code":"153",
|
|
"des":"WAF provides three basic web protection levels: Low, Medium, and High. The default option is Medium. For details, see Table 1.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Which Protection Levels Can Be Set for Basic Web Protection?,Basic Web Protection,User Guide",
|
|
"title":"Which Protection Levels Can Be Set for Basic Web Protection?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0305.html",
|
|
"product_code":"wafd",
|
|
"code":"154",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"CC Attack Protection Rules",
|
|
"title":"CC Attack Protection Rules",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0035.html",
|
|
"product_code":"wafd",
|
|
"code":"155",
|
|
"des":"When a service interface is under an HTTP flood attack, you can set a CC attack protection rule on the WAF console to relieve service pressure.WAF provides the following ",
|
|
"doc_type":"usermanual",
|
|
"kw":"HTTP flood,How Do I Configure a CC Attack Protection Rule?,CC Attack Protection Rules,User Guide",
|
|
"title":"How Do I Configure a CC Attack Protection Rule?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0036.html",
|
|
"product_code":"wafd",
|
|
"code":"156",
|
|
"des":"During the configuration of a CC attack protection rule, if IP addresses cannot identify users precisely, for example, when many users share an egress IP address, use Coo",
|
|
"doc_type":"usermanual",
|
|
"kw":"When Is Cookie Used to Identify Users?,CC Attack Protection Rules,User Guide",
|
|
"title":"When Is Cookie Used to Identify Users?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0306.html",
|
|
"product_code":"wafd",
|
|
"code":"157",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Precise Protection rules",
|
|
"title":"Precise Protection rules",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0217.html",
|
|
"product_code":"wafd",
|
|
"code":"158",
|
|
"des":"WAF does not allow precise protection access rules to take effect in a specified period.You can set precise protection rules to filter access requests based on a combinat",
|
|
"doc_type":"usermanual",
|
|
"kw":"Can a Precise Protection Rule Take Effect in a Specified Period?,Precise Protection rules,User Guide",
|
|
"title":"Can a Precise Protection Rule Take Effect in a Specified Period?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0308.html",
|
|
"product_code":"wafd",
|
|
"code":"159",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Anti-Crawler Protection",
|
|
"title":"Anti-Crawler Protection",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0254.html",
|
|
"product_code":"wafd",
|
|
"code":"160",
|
|
"des":"After JavaScript anti-crawler is enabled, WAF returns a piece of JavaScript code to the client when the client sends a request. If the client sends a normal request to th",
|
|
"doc_type":"usermanual",
|
|
"kw":"Why Is the Requested Page Unable to Load After JavaScript Anti-Crawler Is Enabled?,Anti-Crawler Prot",
|
|
"title":"Why Is the Requested Page Unable to Load After JavaScript Anti-Crawler Is Enabled?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0240.html",
|
|
"product_code":"wafd",
|
|
"code":"161",
|
|
"des":"If you have enabled Other when you configure Feature Library of anti-crawler protection, WAF detects crawlers for various purposes, such as website monitoring, access pro",
|
|
"doc_type":"usermanual",
|
|
"kw":"Is There Any Impact on Website Loading Speed If Other Crawler Check in Anti-Crawler Is Enabled?,Anti",
|
|
"title":"Is There Any Impact on Website Loading Speed If Other Crawler Check in Anti-Crawler Is Enabled?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0315.html",
|
|
"product_code":"wafd",
|
|
"code":"162",
|
|
"des":"Figure 1 shows how JavaScript anti-crawler detection works, which includes JavaScript challenges (step 1 and step 2) and JavaScript authentication (step 3).After JavaScri",
|
|
"doc_type":"usermanual",
|
|
"kw":"How Does JavaScript Anti-Crawler Detection Work?,Anti-Crawler Protection,User Guide",
|
|
"title":"How Does JavaScript Anti-Crawler Detection Work?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0309.html",
|
|
"product_code":"wafd",
|
|
"code":"163",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Others",
|
|
"title":"Others",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0102.html",
|
|
"product_code":"wafd",
|
|
"code":"164",
|
|
"des":"Normally, all requests destined for your site will pass through WAF. However, if your site is using CDN and WAF, the WAF policy targeted at the requests for caching stati",
|
|
"doc_type":"usermanual",
|
|
"kw":"In Which Situations Will the WAF Policies Fail?,Others,User Guide",
|
|
"title":"In Which Situations Will the WAF Policies Fail?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0151.html",
|
|
"product_code":"wafd",
|
|
"code":"165",
|
|
"des":"All paths configured for protection rules of WAF are case-sensitive.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Is the Path of a WAF Protection Rule Case-sensitive?,Others,User Guide",
|
|
"title":"Is the Path of a WAF Protection Rule Case-sensitive?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0028.html",
|
|
"product_code":"wafd",
|
|
"code":"166",
|
|
"des":"The protection rules supported by WAF are described below.Basic Web ProtectionWAF can defend against common web attacks, such as SQL injection, XSS, web shells, and Troja",
|
|
"doc_type":"usermanual",
|
|
"kw":"What Protection Rules Does WAF Support?,Others,User Guide",
|
|
"title":"What Protection Rules Does WAF Support?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0210.html",
|
|
"product_code":"wafd",
|
|
"code":"167",
|
|
"des":"In WAF, Log only is available for Protective Action in basic web protection rules.Log only is available for Protective Action in CC attack protection rules, precise prote",
|
|
"doc_type":"usermanual",
|
|
"kw":"Which of the WAF Protection Rules Support the Log-Only Protective Action?,Others,User Guide",
|
|
"title":"Which of the WAF Protection Rules Support the Log-Only Protective Action?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0355.html",
|
|
"product_code":"wafd",
|
|
"code":"168",
|
|
"des":"Web Tamper Protection (WTP) supports only caching of static web pages. Perform the following steps to fix this issue:If this function is enabled (), go to 7.If this funct",
|
|
"doc_type":"usermanual",
|
|
"kw":"Why Does the Page Fail to Be Refreshed After WTP Is Enabled?,Others,User Guide",
|
|
"title":"Why Does the Page Fail to Be Refreshed After WTP Is Enabled?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0363.html",
|
|
"product_code":"wafd",
|
|
"code":"169",
|
|
"des":"Both of them can block access requests from specified IP addresses. Table 1 describes the differences between the two types of rules.",
|
|
"doc_type":"usermanual",
|
|
"kw":"What Are the Differences Between Blacklist/Whitelist Rules and Precise Protection Rules on Blocking ",
|
|
"title":"What Are the Differences Between Blacklist/Whitelist Rules and Precise Protection Rules on Blocking Access Requests from Specified IP Addresses?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0121.html",
|
|
"product_code":"wafd",
|
|
"code":"170",
|
|
"des":"Cookies are inserted by back-end web servers and can be implemented through framework configuration or set-cookie. Secure and HttpOnly in cookies help defend against atta",
|
|
"doc_type":"usermanual",
|
|
"kw":"What Do I Do If a Scanner, such as AppScan, Detects that the Cookie Is Missing Secure or HttpOnly?,O",
|
|
"title":"What Do I Do If a Scanner, such as AppScan, Detects that the Cookie Is Missing Secure or HttpOnly?",
|
|
"githuburl":""
|
|
},
|
|
{
|
|
"uri":"waf_01_0265.html",
|
|
"product_code":"wafd",
|
|
"code":"171",
|
|
"des":"HUAWEI CLOUD Help Center presents technical documents to help you quickly get started with HUAWEI CLOUD services. The technical documents include Service Overview, Price Details, Purchase Guide, User Guide, API Reference, Best Practices, FAQs, and Videos.",
|
|
"doc_type":"usermanual",
|
|
"kw":"Change History,User Guide",
|
|
"title":"Change History",
|
|
"githuburl":""
|
|
}
|
|
] |