All Products
Search

This Product

    Security Center:Manage defense status and rules

    Document Center

    Security Center:Manage defense status and rules

    Last Updated:Mar 31, 2026

    After creating defense rules for a cluster, you can enable or disable the cluster's defense status, and manage individual defense rules — enabling, disabling, viewing details, editing, or deleting them.

    Prerequisites

    Before you begin, ensure that you have:

    How defense status affects rule enforcement

    A defense rule takes effect only when the cluster's Interceptable Status is Normal. If the status is Abnormal, the rule does not block any traffic even if defense is enabled — resolve the issue before enabling defense. For more information, see Troubleshoot an abnormal interceptable status for a cluster defense rule.

    Manage defense status

    1. Log on to the Security Center consoleSecurity Center console.Log on to the Security Center console.

    2. In the left-side navigation pane, choose Protection Configuration > Container Protection > Container Microsegmentation. In the upper-left corner, select the region where your assets are deployed: Chinese Mainland or Outside Chinese Mainland.

    3. Click the Protection Management tab.

    4. In the cluster list, find the target cluster and manage its Defense Status:

      • Single cluster: Click the toggle icon in the Defense Status column to enable or disable defense for the cluster.

      • Multiple clusters: Select the clusters, then click Batch Enable or Batch Disable below the list.

    Important

    Defense status can only be enabled when the cluster's Interceptable Status is Normal. If the status is Abnormal or Normal to Be Confirmed, the option to enable defense is unavailable. See Troubleshoot an abnormal interceptable status for a cluster defense rule to resolve the issue first.

    Manage defense rules

    1. Log on to the Security Center consoleSecurity Center console.Log on to the Security Center console.

    2. In the left-side navigation pane, choose Protection Configuration > Container Protection > Container Microsegmentation. In the upper-left corner, select the region where your assets are deployed: Chinese Mainland or Outside Chinese Mainland.

    3. Click the Protection Management tab.

    4. In the cluster list, find the cluster whose defense rules you want to manage. In the Actions column, click Detection Rules to expand the Defense Rule panel.

    5. In the list of defense rules, find the target rule and perform the operation you need:

    Enable or disable a rule

    • Single rule: Click the toggle icon in the Enabling Status column to enable or disable the rule.

    • Multiple rules: Select the rules, then click Batch Enable or Batch Disable at the bottom of the list.

    View rule details

    In the Actions column, click Details. The Details panel shows the source network object, destination network object, and other rule attributes.

    Edit a rule

    In the Actions column, click Edit. The Edit Rule panel opens where you can modify the rule configuration.

    Note

    Changes to a defense rule may take up to one minute to take effect.

    Delete a rule

    • Single rule: In the Actions column, click Delete.

    • Multiple rules: Select the rules, then click Batch Delete at the bottom of the list.

    Note

    A deleted defense rule may take up to one minute to be fully removed.