tencent cloud

Release Notes and Announcements

Release Notes

Product Announcement

Security Advisory

User Guide

Product Introduction

Overview

Product Category

Strengths

Scenarios

Plans and Editions

Supported Regions

Basic Concepts

Purchase Guide

Billing Overview

Purchase Guide

WAF Plan Upgrade Method

Renewing Connections

Payment Overdue

Refund

Getting Started

FAQs for Beginners

Operation Guide

Overview

Connection Management

Security Operations

Protection Policies

Service Settings

Practical Tutorial

WAF CCP Overview

Bot Management

API Security

Integration

Protection Configuration

API Documentation

History

Introduction

API Category

Making API Requests

Asset Management APIs

Billing APIs

Protection Settings APIs

Other APIs

IP Management APIs

Integration APIs

Log Service APIs

Security Overview APIs

Rule Engine APIs

Data Types

Error Codes

FAQS

Product Consultation

Connection

Usage

Permissions

Sandbox Isolation Status

Service Level Agreement

WAF Policy

Data Processing And Security Agreement

Glossary

User Guide

PDF

Focus Mode

Font Size

Last updated: 2026-03-13 16:07:50

This document describes how to get started with Web Application Firewall (WAF).
﻿
1. Basic Knowledge of WAF
What features does WAF have?
Why choose WAF?
What are the application scenarios of WAF?
How to choose the WAF version to use?
In which regions is WAF supported?
﻿
2. WAF Billing Mode
Tencent Cloud WAF offers two product forms: SaaS WAF and CLB WAF. The billing items for both types are largely the same, and they share identical billing models and pricing. Both support the yearly/monthly subscription (prepaid) billing method. For details, please refer to Billing Overview.
You can choose to purchase different types of WAF based on different integration methods. For more details, please see Purchase Methods.
﻿
3. Getting started
3.1 WAF features
Tencent Cloud WAF offers two product forms, SaaS WAF and CLB WAF, with different versions providing different main features. For details, please refer to Product Classification.
3.2 WAF purchase
WAF support the yearly/monthly subscription (prepaid) billing method. You can purchase products on the WAF purchase page. For details, please refer to the Purchase Methods.
3.3 Connection to WAF
Tencent Cloud WAF is divided into two types, SaaS WAF and CLB WAF, with different domain name access methods for each type. For details, please refer to Getting Started Overview.
3.4 Related Practices
WAF is applicable to certain use cases and can be used together with other Tencent Cloud services for security protection:
WAF combined with Anti-DDoS Pro application
WAF combined with API Gateway for security protection
Free HTTPS certificate application and usage
Get real client IPs
﻿
4. Overview of console features
If you want to
You can read
View the access log information for WAF protected domains.
Access Log
Query web attack log information based on filter criteria and download the query results.
Attack Log
Enable emergency CC protection or custom CC protection policy.
CC Protection Rules
Prevent tampering and abnormal display of specified pages.
Web page tamper proofing
Through custom policy combinations, create targeted rules to block various types of attacks.
Custom Policies
Replace sensitive information returned by web pages to prevent information leakage.
Information Leakage Prevention
Blocklist foreign countries, regions, and major provinces in China to block all access from these areas.
Regional Blocking
Identify and classify friendly and malicious bots and apply targeted traffic management strategies.
BOT Traffic Management
Perform status queries and blacklist/whitelist settings for access source IPs of domains protected by WAF.
IP Management
﻿
5. FAQs for Beginners
Can servers outside Tencent Cloud use WAF?
Does WAF support HTTPS protection?
Can the real server IP address added to WAF be the private IP address of a Tencent Cloud CVM instance?
Which ports does WAF support?
How to Add a Domain?
Does WAF support wildcard domain access?
﻿
6. Feedback and Suggestions
If you have any questions or suggestions about WAF, you can send your feedback through the following channels, and we will get back to you accordingly:
If you find problems with the product documentation, such as link, content, API errors, etc., you can click Document Feedback on the right side of the document page or select the problematic content to give feedback.
If you encounter product-related issues, you can contact us for assistance.

Help and Support

Was this page helpful?

You can also Contact sales or Submit a Ticket for help.

Help us improve! Rate your documentation experience in 5 mins.

Feedback

If you want to	You can read
View the access log information for WAF protected domains.	Access Log
Query web attack log information based on filter criteria and download the query results.	Attack Log
Enable emergency CC protection or custom CC protection policy.	CC Protection Rules
Prevent tampering and abnormal display of specified pages.	Web page tamper proofing
Through custom policy combinations, create targeted rules to block various types of attacks.	Custom Policies
Replace sensitive information returned by web pages to prevent information leakage.	Information Leakage Prevention
Blocklist foreign countries, regions, and major provinces in China to block all access from these areas.	Regional Blocking
Identify and classify friendly and malicious bots and apply targeted traffic management strategies.	BOT Traffic Management
Perform status queries and blacklist/whitelist settings for access source IPs of domains protected by WAF.	IP Management