Updated on 2024-01-31 GMT+08:00

Creating a Protection Policy

A policy is a combination of rules, such as basic web protection, blacklist, whitelist, and precise protection rules. A policy can be applied to multiple domain names, but only one policy can be used for a domain name. This topic describes how to add a policy for your WAF instance.

If you have enabled enterprise projects, you can select your enterprise project from the Enterprise Project drop-down list and add protection policies in the project.

Prerequisites

A website has been added to WAF.

Constraints

  • This function is not included in the standard edition.
  • A protected website domain name can use only one policy.
  • You can copy policies in the same project.

Adding a Protection Policy

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. Click in the upper left corner and choose Web Application Firewall under Security & Compliance.
  4. In the navigation pane on the left, choose Policies.
  5. In the upper left corner, click Add Policy.
  6. In the displayed dialog box, enter the policy name and click Confirm. The added policy will be displayed in the policy list.
  7. In the Policy Name column, click the policy name. On the displayed page, add rules to the policy by referring to Rule Configurations.

Copying a Protection Policy

If your policy has a known attack source rule configured, configure it again after you copy the policy as known attack source rules configured in dependent rules will become invalid in the new policy.

  1. Log in to the management console.
  2. Click in the upper left corner of the management console and select a region or project.
  3. Click in the upper left corner and choose Web Application Firewall under Security & Compliance.
  4. In the navigation pane on the left, choose Policies.
  5. Locate the row containing the policy you want to copy. In the Operation column, click Copy.
  6. In the dialog box displayed, enter a policy name and then click Confirm.

Other Operations

  • To modify a policy name, click next to the policy name. In the dialog box displayed, enter a new policy name.
  • To delete a rule, locate the row containing the rule. In the Operation column, click More > Delete.
  • To delete protection policies in batches, select all policies you want to delete and click Delete above the policy list.