WAF Release Notes

Last updated: 2021-09-08 14:12:57

    June, 2021

    UpdateDescriptionRelease DateDocument
    Bot report is supported It enables you to quickly spot bot threats to the website, specific APIs under attacks and bot-targeted resources, so that you could respond immediately with bot countermeasures and ensure the security of the website business. June 4, 2021 -
    Intelligence center is supported It enables you to quickly keep track of the latest threat information. June 4, 2021 -

    April, 2021

    UpdateDescriptionRelease DateDocument
    A countermeasure against frontend threats is released With the enhanced bot capability, new countermeasure against frontend threats and dynamic identity verification technology, a unique ID will be generated for each client’s business request to detect possible bots and malicious crawlers in access to websites or H5 pages. April 24, 2021 -
    IPv6 access is supported Both SaaS WAF and CLB WAF support IPv6 access, and IPv6 address enjoys the same protection capabilities as IPv4 address. April 24, 2021 -

    March, 2021

    UpdateDescriptionRelease DateDocument
    Multi-instance is supported It supports central management of multiple WAF deployments for accounts, especially in multi-level protection scenarios, which reduces security operation costs and improves operational efficiency. March 24, 2021 -
    CC attack protection is enhanced New CC frequency control rules are added for refined control in addition to the "IP + URL" and "session + URL" combo rules. March 24, 2021 -

    February, 2021

    UpdateDescriptionRelease DateDocument
    Leak protection is enhanced It now supports custom keyword (regex) filtering and partial or complete replacement of sensitive information. To meet compliance requirements, alarm report and blocking are supported based on a status code returned by the website. February 24, 2021 Leak Protection

    January, 2021

    UpdateDescriptionRelease DateDocument
    Reputation protection policy is supported After enabling, WAF will defend against access requests from malicious proxies, scanners, and intelligence IPs. January 18, 2021 IP Blocking Management
    Attacking IP penalty is supported When the client IP suffers repeated web attacks in a short period of time, all the attack requests will be automatically blocked. You can view the blocking details in attack logs. January 18, 2021 IP Blocking Management

    December, 2020

    UpdateDescriptionRelease DateDocument
    Business security scheme is released Working with Tianyu, WAF releases a business security scheme, which delivers precise protection for account registration and login and anti-cheating activities by extracting account information and evaluating risks. December 17, 2020 -
    API security scheme is introduced With the new API security scheme, you can add APIs or upload API description files to WAF to protect the APIs. December 17, 2020 -

    November, 2020

    UpdateDescriptionRelease DateDocument
    Elastic protection pricing is released Elastic protection pricing for WAF instances is released. Elastic protection applies to WAF instances exceeding the WAF QPS limit. November 17, 2020 Elastic Protection Pricing
    New rule management is introduced New rule is introduced. After enabling, you can create an allowlist based on the URL rule. November 10, 2020 Rules Engine

    October, 2020

    UpdateDescriptionRelease DateDocument
    Dedicated edition is releasedWAF supports the dedicated edition of resources for VIP customers in needs of custom web and API security protection services.October 27, 2020Billing Overview
    New attack log search is introducedNew attack log search is introduced based on log services.October 27, 2020-

    September, 2020

    UpdateDescriptionRelease DateDocument
    Automatic connectivity check is supportedWAF supports automatic domain name connectivity check and troubleshooting to guarantee high availability of origin servers, clusters, and certificates for a better user experience.September 12, 2020-

    July, 2020

    UpdateDescriptionRelease DateDocument
    CLB WAF is supported in regions outside the Chinese mainlandCLB WAF cleansing mode is released in regions including Asia and Europe. IPv6 protection is supported.July 28, 2020Supported Regions
    Millions of log entries can be downloadedThe attack log feature is upgraded to support downloading millions of log entries.July 28, 2020-

    June, 2020

    UpdateDescriptionRelease DateDocument
    Rule engine is optimizedA brand new inspection bypass rule engine is introduced to all regions, improving web attack inspection capabilities.June 17, 2020-
    Secure Content Delivery Network (SCDN) is releasedSCDN is co-released by WAF and CDN, empowering partial CDN nodes with WAF protection capabilities.June 4, 2020-

    May, 2020

    UpdateDescriptionRelease DateDocument
    Cloud Monitor is releasedWAF integrates with Cloud Monitor to support alarm configurations of QPS, web attacks, CC attacks, and WAF status codes (4xx and 5xx).May 17, 2020-
    API 3.0 is releasedWAF API 3.0 is released for you to use all WAF features via API calls. If you want to use it, please contact us.May 11, 2020-

    April, 2020

    UpdateDescriptionRelease DateDocument
    AI engine is optimizedThe performance and algorithm of the AI engine are upgraded to support a new inspection bypass architecture.April 27, 2020AI Engine

    March, 2020

    UpdateDescriptionRelease DateDocument
    Attack overview display is optimizedIn the attack overview display, domain names can be sorted by the number of top web attacks and CC attacks.March 15, 2020-
    Access log is optimizedThe statistics of access log usage and total access is supported.March 15, 2020Access Log

    January, 2020

    UpdateDescriptionRelease DateDocument
    New CLB WAF is released
    • Integrating with CLB clusters to separate the forwarding and security protection of CLB instances, WAF offers bypass inspections for CLB HTTP and HTTPS traffic and syncs threat status to protect web security.
    • Cleansing mode beta is released in Nanjing, and the mirror mode beta is released in Guangzhou, Beijing, and Shanghai.
    2020-01-15Load Balanced WAF

    December, 2019

    UpdateDescriptionRelease DateDocument
    Webshell detection is supportedWAF releases an independent webshell detection engine.December 22, 2019-
    Bot 2.0 is released
    • Bot overview and detail displays are optimized, with expected content, easy-to-use searchers, and detailed and readable Bot records.
    • BOT detection capabilities and defense policies are enhanced, supporting various detection dimensions such as protocols, IP intelligence, and custom sessions to facilitate malicious BOT detection and prevention.
    • The decision-making of BOT policies is more intelligent, as decisions can take effect in real time without being determined by WAF custom policies. The time when a policy takes effect can be specified, CAPTCHA and redirect are supported.
    December 9, 2019Bot Overview

    September, 2019

    UpdateDescriptionRelease DateDocument
    QPS package and log service package are supportedQPS extension packages and security log service packages can be purchased as needed for business capacity expansion.September 18, 2019Purchase Guide
    Non-standard portsNon-standard ports of the enterprise edition and ultimate edition are supported, and non-standard port customization is supported for the ultimate edition.September 18, 2019-

    August, 2019

    UpdateDescriptionRelease DateDocument
    Log service is supportedWAF can record website access logs and retain them for 6 months. It also supports querying and downloading access logs of the last 30 days to meet multi-level protection and compliance needs.August 9, 2019Access Log
    Smart CC protection is supportedAutomatic CC attack defense policies can be generated based on the data derived from website history, abnormal user access, and origin server load.2019-08-09CC Protection Settings 2.0
    Regional blocking capability is enhancedWAF supports blocking requests from 219 countries and regions outside the Chinese mainland.2019-08-09Region Blocking
    Custom blocking information page is supportedWAF supports customizing blocking information pages. If you want to use it, please contact us.2019-08-09-