ProductNews
New Features

Cloud Firewall - Support IPS Private IP Tracing Based on NAT Session Logs

Jan 09 2025

Cloud Firewall
The intrusion prevention system (IPS) attack detection results of Cloud Firewall are associated with NAT session logs to help users quickly trace and identify at-risk private IP addresses.
Content

Target customers: enterprises that deploy Internet NAT gateways for resources in virtual private clouds (VPCs) and want to prevent private IP addresses from being exposed and enterprises that want to quickly identity the private IP addresses of assets such as Elastic Compute Service (ECS) instances that are being attacked or initiating illegal outbound connections. Features released: Users can enable the IPS private IP tracing feature on the IPS Configuration page of the Cloud Firewall console. This allows the system to automatically associate the session logs of NAT gateways with IPS attack logs of Cloud Firewall and analyze the logs. Then, the system can automatically associate a five-tuple network flow in a specific capture window in each NAT session log with each IPS event log recorded by Cloud Firewall to identify at-risk private IP addresses in minutes.

Help Document

https://www.alibabacloud.com/help/cloud-firewall/cloudfirewall/user-guide/prevention-configuration

Previous

Internet Firewall Is Available in the US (Virginia) Region

Next

DLC supports training status notifications

7th Gen ECS Is Now Available

Increase instance computing power by up to 40% and Fully equipped with TPM chips.
Powered by Third-generation Intel® Xeon® Scalable processors (Ice Lake).

Start Now

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More