Edge Security

Overview
DDoS Protection
- DDoS Protection Overview
- Exclusive DDoS Protection Usage
- Configuration of Exclusive DDoS protection Rules
  - Increase DDoS Protection Level
  - Exclusive DDoS Traffic Alarm
  - Configuration IP blocklist/allowlist
  - Configuration Region Blocking Rule
  - Configuration Port Filtering
  - Configuration Features Filtering
  - Configuration Protocol Blocking Rule
  - Configuration Connections Attack Protection
  - Related References
    - Action
    - Related Concepts Introduction
Web Protection
- Overview
- Managed rules
- CC attack defense
- Custom rule
- Custom Rate Limiting Rules
- Exception Rules
- Managed Custom Rules
- Web security monitoring alarm
- Refer
  - Web Protection Request Processing Order
  - Action
  - Match Condition
Bot Management
- Overview
- Bot Intelligent analysis
- Bot Basic Feature Management
- Client Reputation
- Active Detection
- Custom Bot Rule
- Bot Exception Rule
- Related References
  - Action
Rules Template
IP and IP Segment Grouping
Origin Protection
Custom Response Page
Alarm Notification
SSL/TLS
- Overview
- Deploying/Updating SSL Certificate for A Domain Name
- Configuring A Free Certificate for A Domain Name
- HTTPS Configuration
  - Forced HTTPS Access
  - Enabling HSTS
  - SSL/TLS Security Configuration
    - Configuring SSL/TLS Security
    - TLS Versions and Cipher Suites
  - Enabling OCSP Stapling

Action

The DDoS protection module provides multiple action methods. The processing rules for different actions are as follows:
Action
Action Description
Subsequent Actions
Deny
Directly discard the request data package and do not continue to match other rules
None
Allow
Directly pass the request data package and do not continue to match other rules
None
Discard and block
Directly discard the request data package and add the IP to the backend blocklist
None
Continue protection
Continue to execute and match other rules
ontinue to match other rules in order
﻿

Action	Action Description	Subsequent Actions
Deny	Directly discard the request data package and do not continue to match other rules	None
Allow	Directly pass the request data package and do not continue to match other rules	None
Discard and block	Directly discard the request data package and add the IP to the backend blocklist	None
Continue protection	Continue to execute and match other rules	ontinue to match other rules in order