Edge Security
  • Overview
  • DDoS Protection
    • DDoS Protection Overview
    • Exclusive DDoS Protection Usage
    • Configuration of Exclusive DDoS protection Rules
      • Increase DDoS Protection Level
      • Exclusive DDoS Traffic Alarm
      • Configuration IP blocklist/allowlist
      • Configuration Region Blocking Rule
      • Configuration Port Filtering
      • Configuration Features Filtering
      • Configuration Protocol Blocking Rule
      • Configuration Connections Attack Protection
      • Related References
        • Action
        • Related Concepts Introduction
  • Web Protection
    • Overview
    • Configuring Web Protection Policy
    • Managed rules
    • CC attack defense
    • Bandwidth Abuse Protection
    • Custom rule
    • Custom Rate Limiting Rules
    • Exception Rules
    • Managed Custom Rules
    • Web security monitoring alarm
    • Refer
      • Web Protection Request Processing Order
      • Action
      • Match Condition
  • Bot Management
    • Overview
    • Bot Intelligent analysis
    • Bot Basic Feature Management
    • Client Reputation
    • Active Detection
    • Custom Bot Rule
    • Bot Exception Rule
    • Related References
      • Action
  • Rules Template
  • IP and IP Segment Grouping
  • Origin Protection
  • Custom Response Page
  • Alarm Notification
  • SSL/TLS
    • Overview
    • Deploying/Updating SSL Certificate for A Domain Name
    • Configuring A Free Certificate for A Domain Name
    • Mutual Authentication
    • HTTPS Configuration
      • Forced HTTPS Access
      • Enabling HSTS
      • SSL/TLS Security Configuration
        • Configuring SSL/TLS Security
        • TLS Versions and Cipher Suites
      • Enabling OCSP Stapling
    • Refer
      • Using OpenSSL to Generate Self-Signed Certificates
      • Certificate Format Requirements
    • Using Keyless Certificate
이 페이지는 현재 영어로만 제공되며 한국어 버전은 곧 제공될 예정입니다. 기다려 주셔서 감사드립니다.
문서 개요/
Edge Security/
Web Protection/
Configuring Web Protection Policy/

Configuring Web Protection Policy

Web Protection Policy Types

Tencent Cloud EdgeOne (EdgeOne) provides 3 types of web protection policies:
Site-level security policy: A unified policy set for the entire site, which is applicable to all domain names under the current site by default and is also the protection policy that takes effect by default for newly connected domain names under the current site.
Domain-level security policy: It is allowed to set an independent policy for each domain name to meet specific security requirements for different domain names.
Protection templates: It is allowed for users to create and apply a set of predefined protection policies. These templates can be applied to one or more domain names to simplify the configuration process.

A Method to Determine the Policy Used for a Domain Name

1. Log in to the EdgeOne console, click Site List in the left menu bar, and click the site to be configured in the site list.
2. Click Security Protection > Web Protection to go to the Domain-level security policy tab.
3. In the search box in the upper right corner, enter the domain name to find the corresponding domain name entry.
4. In the domain name entry, you can view the security policy type and the policy name or ID.


A Method to Determine the Applicable Domain Name Range for a Protection Template

1. Log in to the EdgeOne console, click Site List in the left menu bar, and click the site to be configured in the site list.
2. Click Security Protection >****Web Protection to go to the Protection templates tab.
3. In the search box in the upper right corner, enter the policy template name or ID to search for the corresponding policy template.
4. In the policy template entry, you can view Associated domain counts and click it to display the list of domain names associated with the policy template in the pop-up window.
5. If necessary, you can click Apply to domains to apply the policy template to other domain names.


Setting an Independent Policy for a Domain Name

1. Log in to the EdgeOne console, click Site List in the left menu bar, and click the site to be configured in the site list.
2. Click Security Protection > Web Protection to go to the Domain-level security policy tab.
3. In the target domain name entry, click Change policy.


4. In the pop-up window, select Change to and the target protection policy.

5. Click OK to save the configuration.
Note:
After the configuration is saved and the deployment is completed, the new protection policy will be used for the domain name. Monitor the protection effectiveness to ensure it meets your expectations and adjust the policy in time.