Enables or disables a rule of a specific protection module for a domain name. The protection modules include the website tamper-proofing, allowed crawlers, bot threat intelligence, custom protection policy, and website whitelist.

You can set the DefenseType parameter to specify the protection module. For more information about the value, see the description of the DefenseType parameter in the "Request parameters" section of this topic.


OpenAPI Explorer automatically calculates the signature value. For your convenience, we recommend that you call this operation in OpenAPI Explorer. OpenAPI Explorer dynamically generates the sample code of the operation for different SDKs.

Request parameters

Parameter Type Required Example Description
Action String Yes ModifyProtectionRuleStatus

The operation that you want to perform. Set the value to ModifyProtectionRuleStatus.

DefenseType String Yes tamperproof

The protection module. Valid values:

  • tamperproof: Website Tamper-proofing
  • bot_crawler: Allowed Crawlers
  • bot_intelligence: Bot Threat Intelligence
  • ac_custom: Custom Protection Policy
  • whitelist: Website Whitelist
Domain String Yes www.example.com

The domain name that is added to WAF.

InstanceId String Yes waf_elasticity-cn-0xldbqt****

The ID of the WAF instance.

Note You can call the DescribeInstanceInfo operation to query the ID of the WAF instance.
LockVersion Long Yes 2

The version of the rule.

RuleId Long Yes 42755

The ID of the rule.

Note You can call the DescribeProtectionModuleRules operation to query the IDs of all rules.
RuleStatus Integer Yes 1

The status of the rule. Valid values:

  • 0: disabled
  • 1: enabled

Response parameters

Parameter Type Example Description
RequestId String D7861F61-5B61-46CE-A47C-6B19160D5EB0

The ID of the request.


Sample requests

&<Common request parameters>

Sample success responses

XML format


JSON format

    "RequestId": "D7861F61-5B61-46CE-A47C-6B19160D5EB0"

Error codes

For a list of error codes, visit the API Error Center.