Alibaba Web Application Firewall
AlibabaSecurityManaged WAF protecting web apps from OWASP Top 10 attacks, bot traffic, API abuse, and data scraping, with global and China regional deployment, custom rule engine, and unified consoles across Anti-DDoS and Security Center
FluffyStack toolsAttributes
- Rulesets
- OWASP Top 10 + custom
Sub-services (3)
Protection Rules
Pre-built OWASP Top 10 + custom expression-based rules
Bot Management
Traffic scoring to distinguish humans, good bots, and bad bots
API Security
Schema-based API abuse detection and parameter validation
Compliance & Certifications
This service is attested for the following frameworks. Always verify with the provider before relying on a specific compliance posture.
Where this runs
Sovereign regions (7)
- China (Hangzhou) · HangzhouAlibaba Cloud China
- China (Beijing) · BeijingAlibaba Cloud China
- China (Shanghai) · ShanghaiAlibaba Cloud China
- China (Shenzhen) · ShenzhenAlibaba Cloud China
- China (Chengdu) · ChengduAlibaba Cloud China
- China (Zhangjiakou) · ZhangjiakouAlibaba Cloud China
- China (Hohhot) · HohhotAlibaba Cloud China
Commercial regions (15)
Europe (2)
- Frankfurt
- London
North America (2)
- Silicon Valley
- Virginia
Asia (9)
- Hong Kong
- Mumbai
- Jakarta
- Tokyo
- Kuala Lumpur
- Manila
- Singapore
- Seoul
- Bangkok
Oceania (1)
- Sydney
Middle East (1)
- Dubai
Tags
Equivalent services on other platforms
Web application firewall that protects against common exploits with managed rule groups, custom rules, rate-based rules, Bot Control, and CAPTCHA challenges
Layer 7 load balancer with integrated web application firewall, SSL termination, URL-based routing, cookie-based session affinity, and autoscaling based on traffic
Edge DDoS protection and web application firewall with managed rule sets for OWASP Top 10, adaptive bot protection, and reCAPTCHA Enterprise integration