Cloud-native gateways are deeply integrated with Alibaba Cloud Web Application Firewall (WAF) 3.0 and support instance-level and route-level WAF protection to provide one-stop security protection for your websites or apps. This topic describes how to enable route-level WAF protection.
Procedure
Log on to the MSE console, and select a region in the top navigation bar.
In the left-side navigation pane, choose Cloud-native Gateway > Gateways. On the Gateways page, click the name of the gateway.
In the left-side navigation pane, click Routes, and click the Routes tab.
Click the name of the desired route. On the page that appears, click the Policies tab, and click WAF. In the right-side section, click Enable Route-level WAF Protection (Recommended).
In the message that appears, click OK.
What to do next
After you enable WAF protection, website access traffic is detected and filtered by WAF. WAF provides multiple features to protect your website against different types of attacks. By default, only the protection rules engine and HTTP flood protection features are enabled. The protection rules engine feature protects your website against common web attacks, such as SQL injections, cross-site scripting (XSS) attacks, and webshell uploads. The HTTP flood protection feature protects your website against HTTP flood attacks. You must manually enable other features and configure protection rules. For more information, see Overview.
References
For more information about how to enable instance-level WAF protection, see Enable WAF protection.