Web Application Firewall (WAF) uses specific IP addresses to proactively detect the health status of your protected origin servers. We recommend that you do not block these IP addresses.
To ensure that origin servers can respond to the normal business requests forwarded by WAF, WAF proactively detects the health status of your protected origin servers on an irregular basis.
WAF uses fixed IP addresses to detect only the health status of your protected origin servers. The detection does not affect your origin servers. If data packets from proactive detection IP addresses are found in the access logs of your protected origin servers, you do not need to concern about whether your origin servers have been subject to malicious attacks. To ensure that the health check feature of WAF works as expected, we recommend that you add proactive detection IP addresses to a whitelist in the access control policies of your origin servers.
Proactive detection IP addresses at Layer 3
|Region/Line||Proactive detection IP address|
|Line cn335, China Unicom Dalian branch||188.8.131.52|
|China (Hong Kong)||184.108.40.206|
|Malaysia (Kuala Lumpur)||220.127.116.11|
|US (Silicon Valley)||18.104.22.168|
Proactive detection IP addresses at Layer 4 and Layer 7
|Network type||Proactive detection IP address|