Edge Security
  • Overview
  • DDoS Protection
    • DDoS Protection Overview
    • Exclusive DDoS Protection Usage
    • Configuration of Exclusive DDoS protection Rules
      • Increase DDoS Protection Level
      • Exclusive DDoS Traffic Alarm
      • Configuration IP blocklist/allowlist
      • Configuration Region Blocking Rule
      • Configuration Port Filtering
      • Configuration Features Filtering
      • Configuration Protocol Blocking Rule
      • Configuration Connections Attack Protection
      • Related References
        • Action
        • Related Concepts Introduction
  • Web Protection
    • Overview
    • Managed rules
    • CC attack defense
    • Custom rule
    • Custom Rate Limiting Rules
    • Exception Rules
    • Managed Custom Rules
    • Web security monitoring alarm
    • Refer
      • Web Protection Request Processing Order
      • Action
      • Match Condition
  • Bot Management
    • Overview
    • Bot Intelligent analysis
    • Bot Basic Feature Management
    • Client Reputation
    • Active Detection
    • Custom Bot Rule
    • Bot Exception Rule
    • Related References
      • Action
  • Rules Template
  • IP and IP Segment Grouping
  • Origin Protection
  • Custom Response Page
  • Alarm Notification
  • SSL/TLS
    • Overview
    • Deploying/Updating SSL Certificate for A Domain Name
    • Configuring A Free Certificate for A Domain Name
    • HTTPS Configuration
      • Forced HTTPS Access
      • Enabling HSTS
      • SSL/TLS Security Configuration
        • Configuring SSL/TLS Security
        • TLS Versions and Cipher Suites
      • Enabling OCSP Stapling

Origin Protection

Overview

When Origin Protection is enabled, EdgeOne notifies you of the latest update of intermediate IPs of L4 proxy and site acceleration. You can sync them to the firewall rules of your origin, allowing only traffic from these IPs to your origin.

Directions

1. Log in to the EdgeOne console, click Site List in the left sidebar. In the site list, click the target site to enter the site details page.
2. In the site details page, click Security protection > Origin protection.
3. On the page that appears, enable Origin Protection. Select the resources to bind with the intermediate IP addresses. Click OK.
Note
Select resource: Select target resources to enable Origin Protection.
4. After Origin Protection is enabled:
You can see the current intermediate IP addresses. You can update your origin firewall rules accordingly.
You will be informed of any updates of the intermediate IP addresses. Once you confirm the updates and report your update progress, the latest ones will be applied to your associated resources.

Reminders

To ensure the normal running of your business, confirm and update the intermediate IPs in the console as soon as possible after you are notified.

Note
If the intermediate IP addresses are not updated, there may be higher latency or instability issues in case of high concurrency.