Web application firewall_Web security protection_Web threat intelligent interception Tencent Cloud

Free trial of applet security acceleration
Product experience
Tencent Cloud WAF feature capability, dedicated solution for applet customers
Go now
Equal protection 2.0 security solution
Fast and worry free one-stop waiting for service, waiting for service 2.0 solution, one click single function online
Go now

Product family

Applet security speeds up the access link of WeChat gateway, provides native high availability acceleration services, anti DDoS, anti DNS hijacking, anti crawling, anti brushing and other native security protection capabilities, and supports the unified security management of the Web end, applet end and APP end to ensure the safe, efficient and stable operation of business in an all-round way.

BOT flow management

Through the triple interception capabilities of client risk identification (front-end confrontation), protection rule set and AI intelligent identification engine, a new generation of BOT traffic management system combining client risk identification and multi-dimensional real-time analysis has been created to accurately deal with resource consumption, information leakage and invalid marketing problems caused by malicious robot program crawling.

API Security

API security supports functions such as fully automatic asset discovery, sensitive data disclosure prevention, API flow limiting, abnormal event control closed-loop, real-time flow analysis report, and links Tencent security threat intelligence, Tencent Tianyu business security and other capabilities to help enterprises build a comprehensive, intelligent, and accurate API full life cycle security defense system.

Product characteristics

Multiple access modes

It supports traditional access through DNS configuration mode, and launches a new access mode in conjunction with Tencent Load Balancing. It realizes efficient forwarding, efficient protection, and separation of forwarding and security through bypass deployment and attack cleaning to ensure stable and secure business.

Crawler Bot behavior management

Web crawler and bot robot management based on AI+rule base helps enterprises avoid business risk problems such as website user data leakage, content infringement, competitive price comparison, inventory retrieval, black product SEO, and business strategy leakage caused by malicious bot behaviors.

AI+Web application firewall

Web attack identification based on AI+rules, anti bypass, low false positives, low false positives, and accurate and effective defense against common Web attacks, such as SQL injection, unauthorized access, XSS cross site script, CSRF cross site request forgery, Webshell Trojan upload, and other ten Web security threats defined by OWASP.

Business risk protection

Provide business risk control scheme, control IP access, avoid negative impact caused by webpage tampering, and prevent sensitive data leakage.

CC attack protection

Multi dimensional customized precise access control, together with human-computer identification and frequency control and other countermeasures, effectively filters garbage access and alleviates CC attacks.

Full log support

It provides full log real-time storage and query services to ensure that business conditions are safe, controllable and visible, and help ensure compliance and legality.

0day vulnerability virtual patch

Tencent's security team monitors 7 * 24 hours, actively discovers and responds, issues high-risk web vulnerabilities within 24 hours, and 0day vulnerability protection virtual patches. Protected users can obtain emergency vulnerabilities without any action. 0day vulnerability attack protection capability effectively shortens vulnerability response cycle.

30 line BGP IP access protection

Support the protection node 30 line exclusive BGP IP link access, intelligent scheduling of nodes, effectively solve the problem of access delay, ensure the site access speed of urban users of line 1-18, and realize the security protection deployment that has no awareness of the impact on the site access speed.

Application scenarios

Internet+business
E-commerce O2O site
Minsheng government website
Enterprise website

Business data will not be intruded, tampered or stolen, and various attacks and garbage flows will be filtered to support the normal and stable operation of Internet+enterprise core business.

Solve the problems of content copyright infringement, black SEO, data crawling leakage, and garbage flow negative impact brought by malicious Bots.

High availability, flexible expansion with business growth, cost saving.

Access mode

SaaS type
Load balanced

SaaS type

After the user adds a protection domain name on the Web application firewall and sets the source information back, the Web application firewall will assign a unique CNAME address to the protection domain name. The user can modify the original A record to CNAME record by modifying DNS resolution, and schedule the protection domain name traffic to the Web application firewall cluster. The web application firewall cluster detects and protects the malicious traffic of the protection domain name, and then returns the normal traffic to the source site to protect the website security.

Customer Stories

The web application firewall uses AI protection and intelligent CC protection functions to deal with massive traffic attacks and sudden increase of business of AiListen Zhuoluo for many times, effectively ensuring the security of website digital assets.

—— Love listening to Zhuo Le

cooperative partner

Shenzhen Wangshang Tianxia Technology Development Co., Ltd

It is committed to protecting the security of enterprise cloud business, and has set up a professional security operation and maintenance team to provide enterprises with cloud security operation and maintenance hosting, risk assessment, emergency response, vulnerability repair and other security services. It also provides enterprises with 1V1 dedicated after-sales service group to monitor business and feedback in real time.

Kunpeng in the Century

The company has been committed to improving the efficiency and quality of research and development in the Internet field. At present, it is widely involved in the research and development support of Tencent's mobile Internet, social networking, entertainment, security and other business systems.

Help and Documentation

common problem

General FAQs
Deployment architecture problems
Other frequently asked questions

Can servers not in Tencent cloud use Web application firewall?

The web application firewall supports the access of users in the machine room outside the cloud, and can protect any public network server, including but not limited to Tencent Cloud, other manufacturers' cloud, IDC, etc.

Note: Domain names accessed in mainland China must be registered in ICP according to the requirements of the Ministry of Industry and Information Technology.

Does the Web application firewall support HTTPS protection?

Is the QPS limit specification of the Web application firewall for the entire instance, or the QPS upper limit of a single domain name configured?

For more questions, please check common problem , or in Q&A Community Ask questions in.

According to our Getting Started Guide , you can create your Tencent Cloud Web Application Firewall with just a few mouse clicks.

Getting Started