tencent cloud

Feedback

Integrating WAF to API Gateway for Security Protection

Last updated: 2022-05-25 15:06:35

    Overview

    Tencent Cloud Web Application Firewall (WAF) is an AI-based one-stop web service protection solution.
    This document describes how to integrate WAF to the API Gateway to protect your APIs.

    Prerequisites

    Directions

    Step 1. Bind a custom domain name in the API Gateway console

    For more information about how to bind a custom domain name in the API Gateway console, see Custom Domain Name and Certificate.

    Note:

    When a custom domain name is bound to the API Gateway console, the system will check whether you have configured CNAME and resolved it to the service subdomain name. Be sure to first configure CNAME and resolve it to the subdomain name of the API Gateway, modify the CNAME record, and point the custom domain name to the WAF domain name.

    Step 2. Configure WAF

    1. Log in to the WAF console.
    2. Click Web Application Firewall > Defense Settings in the left sidebar.
    3. Click Add domains at the top of the Domain name list module.
    4. Select Domain name as the real server address and enter the subdomain name of the API Gateway. Complete the other configurations.
    5. Click Save. The domain name should now be in the “CNAME record not configured” status.

    Step 3. Modify the CNAME record

    1. Modify the CNAME record and resolve the custom domain name to the WAF domain name.
    2. Log in to WAF console. Click Web Application Firewall > Defense Settings in the left sidebar.
    3. Click the refresh icon in the Protection status column. The status should change to Normal protection.
    Contact Us

    Contact our sales team or business advisors to help your business.

    Technical Support

    Open a ticket if you're looking for further assistance. Our Ticket is 7x24 avaliable.

    7x24 Phone Support