Cloud Firewall (CFW)

Services can be deployed in minutes, public network assets and internal assets can be automatically synchronized, and the protection can be enabled in one-click.

Diverse traffic charts improve security management efficiency

Security policies can be imported in one click.

High reliability: Engines and components are deployed in clusters or redundant configurations so services can continue uninterrupted if a single node fails.

Reduced up-front investment: You can start small and scale out later as your services expand.

Supports up to 200 Gbit/s of protection bandwidth, easily handling service traffic even during peak hours.

Log Tank Service (LTS) and SecMaster collect firewall logs in real time, store logs long term, and produces a range of statistical reports.

Cloud Trace Service (CTS) monitors and audits assets in real-time. Simple Message Notification (SMN) reports alarms when threats are detected.

Supports enterprise projects, multi-account solutions, and permission management scenarios, such as managing multiple firewalls using a single account or managing resources across accounts.

Supports refined access control for Internet traffic and inter-VPC traffic, flexible configurations based on IP addresses; geographical locations and domain names; and 20,000 ACLs.

Huawei's threat and vulnerability databases are integrated into CFW, enabling you to precisely defend against online threats.

Supports functions such as virus scans, reverse shell detection, sensitive directory scan, and custom IPS to effectively defend against attacks.