新增访问控制

<p class="shortdesc">在访问控制中,您可以添加ip,并对该ip执行放行或拦截操作,本文介绍如何新增访问控制。</p> <section class="section context"><div class="tasklabel"><h2 class="doc-tairway">背景信息</h2></div> <p class="p">在误拦截网站的正常访问时,可以在<span class="ph menucascade"><span class="ph uicontrol">云防护</span><abbr> > </abbr><span class="ph uicontrol">安全运营</span><abbr> > </abbr><span class="ph uicontrol">访问控制</span></span>下点击<span class="ph uicontrol">新增访问控制</span> ,如果是只是内网用户访问,将自己当前的公网IP设置为放行即可;如果公网也有访问需求,则需要根据情况做站点级或URL级策略;同理在对任何有存在可疑攻击行为的IP,也可以到 <span class="ph uicontrol">访问控制</span>下,新增访问控制,将可疑IP加入黑名单禁止其对站点发起访问。下发后,一般5分钟左右生效。</p> </section> <section><div class="tasklabel"><h2 class="doc-tairway">操作步骤</h2></div><ol class="ol steps"><li class="li step stepexpand"> <span class="ph cmd">登录<span class="ph"><a class="xref" href="https://pinganyun.com/console/pwaf" target="_blank">Web应用防火墙控制台</a></span><a class="xref" href="https://fincloud.pinganyun.com/console/pwaf" target="_blank">Web应用防火墙控制台</a>。</span> </li><li class="li step stepexpand"> <span class="ph cmd">在<span class="keyword wintitle">概览</span>页面<span class="keyword wintitle">资源状态</span>区域,单击<span class="ph uicontrol">管理</span>。</span> <div class="itemgroup info"> <img class="image" id="operation_guide_0012__image_jn5_vh3_hmb" src="https://obs-cn-shanghai.yun.pingan.com/pcp-portal/20203112110411-135b9aa2965a.jpg" width="830"> </div> </li><li class="li step stepexpand"> <span class="ph cmd">在网站安全防护系统左侧导航栏中,单击<span class="ph menucascade"><span class="ph uicontrol">安全运营</span><abbr> > </abbr><span class="ph uicontrol">访问控制</span></span>。</span> </li><li class="li step stepexpand"> <span class="ph cmd">在页面左上角单击<span class="ph uicontrol">新增访问控制</span>。</span> </li><li class="li step stepexpand"> <span class="ph cmd">在<span class="keyword wintitle">新增访问控制</span>页面,完成如下配置信息。</span> <div class="itemgroup info"> <img class="image" id="operation_guide_0012__image_xfc_kzc_3mb" src="https://obs-cn-shanghai.yun.pingan.com/pcp-portal/20203112110412-1cfde1a09bb5.jpg" width="830"> <table class="table frame-all" id="operation_guide_0012__table_hsv_vwc_3mb"><caption></caption><colgroup><col style="width:50%"><col style="width:50%"></colgroup><thead class="thead"> <tr class="row"> <th class="entry colsep-1 rowsep-1" id="operation_guide_0012__table_hsv_vwc_3mb__entry__1">配置项</th> <th class="entry colsep-1 rowsep-1" id="operation_guide_0012__table_hsv_vwc_3mb__entry__2">说明</th> </tr> </thead><tbody class="tbody"> <tr class="row"> <td class="entry colsep-1 rowsep-1" headers="operation_guide_0012__table_hsv_vwc_3mb__entry__1 "> <p class="p">IP地址</p> </td> <td class="entry colsep-1 rowsep-1" headers="operation_guide_0012__table_hsv_vwc_3mb__entry__2 "> <p class="p">输入IP地址,可以输入多个IP,以英文逗号分隔。当限定级别选为“站点级”或“url级”时,IP地址可以为空。</p> </td> </tr> <tr class="row"> <td class="entry colsep-1 rowsep-1" headers="operation_guide_0012__table_hsv_vwc_3mb__entry__1 "> <p class="p">动作</p> </td> <td class="entry colsep-1 rowsep-1" headers="operation_guide_0012__table_hsv_vwc_3mb__entry__2 "> <div class="p">指访问控制的方式:<ul class="ul" id="operation_guide_0012__ul_ovy_txc_3mb"> <li class="li">拦截:该ip访问被拦截。</li> <li class="li">放行:该ip访问直接bypass。</li> </ul></div> </td> </tr> <tr class="row"> <td class="entry colsep-1 rowsep-1" headers="operation_guide_0012__table_hsv_vwc_3mb__entry__1 "> <p class="p">限定时长</p> </td> <td class="entry colsep-1 rowsep-1" headers="operation_guide_0012__table_hsv_vwc_3mb__entry__2 "> <div class="p">选择永久或限时,限时还需要输入具体的时间,超时失效。<ul class="ul" id="operation_guide_0012__ul_pgc_15w_mmb"> <li class="li">站点级:影响的站点,选取站点(可多选)。</li> <li class="li">url级:影响站点的哪些页面,url除去域名和参数,带*为所有。示例:http://test.com/index.php?tn=monline_3_dg==>/index.php 除去域名与参数,且每行只能输入一个url。</li> </ul><div class="note note note_note"><span class="note__title">说明:</span> 限时不能大于3小时。</div></div> </td> </tr> <tr class="row"> <td class="entry colsep-1 rowsep-1" headers="operation_guide_0012__table_hsv_vwc_3mb__entry__1 "> <p class="p">限定级别</p> </td> <td class="entry colsep-1 rowsep-1" headers="operation_guide_0012__table_hsv_vwc_3mb__entry__2 "> <p class="p">指访问控制的作用范围。</p> </td> </tr> <tr class="row"> <td class="entry colsep-1 rowsep-1" headers="operation_guide_0012__table_hsv_vwc_3mb__entry__1 "> <p class="p">限定站点</p> </td> <td class="entry colsep-1 rowsep-1" headers="operation_guide_0012__table_hsv_vwc_3mb__entry__2 "> <p class="p">勾选需要限定的站点。</p> </td> </tr> <tr class="row"> <td class="entry colsep-1 rowsep-1" headers="operation_guide_0012__table_hsv_vwc_3mb__entry__1 "> <p class="p">描述</p> </td> <td class="entry colsep-1 rowsep-1" headers="operation_guide_0012__table_hsv_vwc_3mb__entry__2 "> <p class="p">输入描述信息。</p> </td> </tr> </tbody></table> </div> </li><li class="li step stepexpand"> <span class="ph cmd">单击<span class="ph uicontrol">批量添加</span>。</span> </li><li class="li step stepexpand"> <span class="ph cmd">在<span class="keyword wintitle">注意</span>对话框中,单击<span class="ph uicontrol">确定</span>。</span> <div class="itemgroup info"> <img class="image" id="operation_guide_0012__image_hcz_c1d_3mb" src="https://obs-cn-shanghai.yun.pingan.com/pcp-portal/20203112110412-1dc5aeea9525.jpg"> </div> </li></ol></section> <section class="section result" id="operation_guide_0012__result_ol5_f1d_3mb"><div class="tasklabel"><h2 class="doc-tairway">执行结果</h2></div> <p class="p">新增成功后,在<span class="keyword wintitle">访问控制</span>页面可以查看到刚刚添加的访问控制信息。</p> </section>
以上内容是否解决了您的问题?
请补全提交信息!
咨询·建议

电话咨询 - 7x24 小时

400-151-8800

邮件咨询

cloud@pingan.com

在线客服

7x24 小时,急速解答

工单支持

解决云产品相关技术问题