DocsICP FilingConsole
官方文档
首页

Access control policy backup and rollback

更新时间:
复制 MD 格式
产品详情
我的收藏

Cloud Firewall lets you back up and roll back access control policies for the Internet firewall, NAT firewalls, and VPC firewall. You can back up policies at a specific point in time and quickly revert to that state as needed.

Limits

  • Backup and rollback apply to all access control policies for the Internet firewall, NAT firewalls, and VPC firewall together. You cannot back up or roll back policies for Internet border access control or NAT border access control separately. After a rollback, the policies for both Internet border access control and NAT border access control revert to their state at the time of the backup.

  • Each Alibaba Cloud account can have a maximum of 12 policy backup records.

    If you reach this limit, delete an existing backup record before creating a new one.

Back up access control policies

You can roll back only to policies that have been backed up.

  1. Log on to the Cloud Firewall console.

  2. In the navigation pane on the left, choose Settings > Toolbox.

  3. On the Toolbox page, click View Backup.

  4. On the Policy Backup and Rollback page, click Create Backup.

  5. In the Create Backup Policy dialog box, enter a description for the backup policy and click OK.

    Configuration Item

    Description

    Backup Time

    The time when the backup was created.

    Policies

    The total number of bidirectional access control policies for the Internet firewall and VPC firewall under the current Alibaba Cloud account.

    Description

    The description you entered when creating the backup.

    Note

    The description can contain up to 256 characters. Use the description and backup time to identify the correct backup record during rollback, so write a clear description that distinguishes each record.

    The new policy backup record is added to the Policy Backup and Rollback page.

Roll back access control policies

A policy rollback replaces your current access control policies with the policies from the backup. To prevent service interruptions, follow this process:

Perform the following steps to restore policies from a backup.

  1. Log on to the Cloud Firewall console.

  2. In the navigation pane on the left, choose Settings > Toolbox.

  3. On the Toolbox page, click View Backup.

  4. On the Policy Backup and Rollback page, find the backup record that you want to restore and click Use Backup.

  5. In the Are you sure that you want to roll back the backup? dialog box, click OK.

    Note

    • The rollback process takes only a few seconds.

    • A timeout may occur if you have a large number of policies or if multiple users perform rollback operations at the same time. If a timeout occurs, follow the on-screen instructions.

    • If a rollback fails, your current access control policies remain unchanged.

Delete backup policies

To delete a backup record, on the Policy Backup and Rollback page, find the record that you want to delete and click Delete Backup.

Warning

Deleted backup policies cannot be recovered. Proceed with caution.

References

Previous:Configure access control using Security Operation AgentNext:Policy analysis