Overview
Tencent Cloud Web Application Firewall (WAF) is an AI-based one-stop web service protection solution.
This document describes how to integrate WAF to the API Gateway to protect your APIs.
Prerequisites
You have released APIs using the API Gateway.
Directions
Step 1. Bind a custom domain name in the API Gateway console
Note:
When a custom domain name is bound to the API Gateway console, the system will check whether you have configured CNAME and resolved it to the service subdomain name. Be sure to first configure CNAME and resolve it to the subdomain name of the API Gateway, modify the CNAME record, and point the custom domain name to the WAF domain name.
2. Click Web Application Firewall > Defense Settings in the left sidebar.
3. Click Add domains at the top of the Domain name list module.
4. Select Domain name as the real server address and enter the subdomain name of the API Gateway. Complete the other configurations.
5. Click Save. The domain name should now be in the “CNAME record not configured” status.
Step 3. Modify the CNAME record
1. Modify the CNAME record and resolve the custom domain name to the WAF domain name.
2. Log in to WAF console. Click Web Application Firewall > Defense Settings in the left sidebar.
3. Click the refresh icon in the Protection status column. The status should change to Normal protection.
Was this page helpful?