This topic provides a feature overview of the security protection plug-ins provided by cloud-native gateways. This helps you understand and make full use of these plug-ins to improve system security and protect against potential risks.
Plug-in | Feature description |
The request-block plug-in is used to block HTTP requests based on characteristics such as URLs and request headers. The request-block plug-in can be used to protect some website resources from external exposure. | |
The bot-detect plug-in is used to identify web crawlers and prevent web crawlers from crawling websites. | |
The waf plug-in is a rules protection engine based on ModSecurity. You can use the waf plug-in to block suspicious requests based on the configured rules. The waf plug-in supports OWASP ModSecurity Core Rule Set (CRS) to provide basic protection features for websites. |