If your web business has enabled Tencent CloudApp CLB (Cloud Load Balancer, abbreviated as CLB), you can integrate Precise Domain Protection into the WAF instance and enable Default Policy Protection for Objects. This document guides you on how to enable Precise Domain WAF Protection. Before beginning, check and confirm that the CLB has configured the corresponding HTTP and HTTPS listeners and that the listeners have bound valid origin server information.
Directions
By associating domain names with a CLB's HTTP and HTTPS listeners, CLB WAF checks and blocks HTTP or HTTPS traffic passing through the CLB listener. Before accessing CLB WAF, make sure that your website business has been deployed on Tencent Cloud and is using Tencent Cloud CLB (previously Application Load Balancer, network type public or private).
Note:
We recommend using SaaS WAF for website business not deployed on Tencent Cloud.
To enable Precise Domain Protection, you need to configure the CLB and set the corresponding domain name in the HTTP and HTTPS listeners to ensure proper business forwarding. For details, please refer to Configure HTTP Listener and Configure HTTPS Listener.
This document uses the protection of
clb.technicalsupport.cn as an example to view the configuration information of the configured CLB listener.1. Log in to the Tencent Cloud CLB console, and click Instance Management on the left sidebar to enter the instance management page.
2. Select Region > CLB , view the already created CLB instances. In the right-hand operation column, click Configure Listener to view the configuration.
3. On the listener configuration page, click Listener Management to view the listener's domain name configuration information. The listener name is waftest, and the listener forwarding rule's domain name is
clb.technicalsupport.cn. The domain protection status is not enabled.
Next steps
After confirming your CLB configuration, you can proceed to the following steps: