After you deliver Web Application Firewall (WAF) logs to Simple Log Service, you can manage and monitor the real-time security status of web applications in a centralized manner, improve the response efficiency of security events, and identify security threats based on data analysis. This topic describes how to manage the log delivery status.
Enable or disable log delivery
Log delivery is a process in which logs are transferred from one system or service to another platform for storage or analysis. This process involves a source and a destination. The source can be WAF, a server, or a web application. The destination can be Simple Log Service, a storage platform, or a data analysis platform.
Log on to the WAF 3.0 console. In the top navigation bar, select the resource group and region of your WAF instance. You can select Chinese Mainland or Outside Chinese Mainland.
In the left-side navigation pane, choose .
Enable or disable log delivery.
On the Log Service page, select your protected object from the drop-down list. Then, click Enable Now or turn on Status.
On the Log Service page, click Log Configuration in the upper-right corner. On the page that appears, click the Delivery Settings tab, find your protected object, and then turn on the switch in the Status of Delivery to Simple Log Service column.
NoteIf you want to enable or disable log delivery for multiple protected objects at a time, select the protected objects, click Batch Manage below the protected object list, and then select Enable Delivery to Simple Log Service or Disable Delivery to Simple Log Service.