Alibaba Cloud WAF Web Application Firewall

Collect Alibaba Cloud WAF Web Application Firewall Metrics data

Configuration¶

Install Func¶

It is recommended to subscribe to Guance Integration - Extensions - DataFlux Func (Automata)

For self-deploying Func, refer to Self-deploy Func

Enable Script¶

Note: Please prepare the Alibaba Cloud AK that meets the requirements in advance (for simplicity, you can directly grant the global read-only permission ReadOnlyAccess)

Enable Script Manually¶

1. Log in to the Func console, click [Script Market], enter the Guance Script Market, and search for: integration_alibabacloud_waf_v3

2. Click [Install], then enter the corresponding parameters: Alibaba Cloud AK ID, AK Secret, and account name.

3. Click [Deploy Startup Script], the system will automatically create the Startup script set and configure the corresponding startup script.

4. After enabling, you can see the corresponding automatic trigger configuration in "Manage / Automatic Trigger Configuration". Click [Execute] to execute it immediately once without waiting for the scheduled time. Wait a moment, you can check the execution task records and corresponding logs.

Verification¶

1. In "Manage / Automatic Trigger Configuration", confirm whether the corresponding task has the corresponding automatic trigger configuration, and you can also check the corresponding task records and logs to see if there are any exceptions.
2. In Guance, check if asset information exists in "Infrastructure / Custom".
3. In Guance, check if there is corresponding monitoring data in "Metrics".

Metrics¶

Web Application Firewall metrics are under the aliyun_acs_waf Measurement. The following are the metric details.