Create Global Edge

release/20240425
English

Create Global Edge

Article Summary

Share feedback

Thanks for sharing your feedback!

Available in Classic and VPC

The following describes how to create a Global Edge on the NAVER Cloud Platform console.
To create a Global Edge, you need to first create a profile and then create an edge that belongs to it, and there are two ways to create an edge: Quick Start and Self Integration.

Quick Start: create an edge with a simple setup.
Self Integration: create a customized edge by configuring the details of the edge yourself.

Create profile

To create a profile, follow these steps:

Click the environment you are using in the Region menu and the Platform menu on the NAVER Cloud Platform console.
Click Services > Content Delivery > Global Edge menu, in order.
Click [Create profile] on the management page.
Enter the profile name on the Create profile page.
- You can use letters, numbers, hyphens (-), and underscores (_) within a range of 3 to 35 characters
Click the [Complete] button.
- This directs you to the management page with the created profile selected.

Creating an edge with Quick Start

To create an edge using Quick Start, follow these steps:

Note

To create an edge using Quick Start, your content source must be stored in Object Storage of NAVER Cloud Platform.

Click the environment you are using in the Region menu and the Platform menu on the NAVER Cloud Platform console.
Click Services > Content Delivery > Global Edge menu, in order.
Select the profile to create an edge for from the Profile drop-down list at the top of the page.
Click the [Create Edge] button.
Once the Edge settings page appears, select Quick Start, and then click the [Next] button.
Proceed with the following steps in order.

1. Deployment configuration

Configure the default settings for the edge that you want to deploy.

Edge name: enter the edge name
- You can use letters, numbers, hyphens (-), and underscores (_) within a range of 3 to 35 characters
Service Protocol HTTPS: select whether to use HTTPS as the protocol when making content calls. (Recommended) When using HTTPS, requested information is transmitted from the server to the browser in an encrypted state.
Service domain: set the domain that the users will use to access the service by clicking on a link or entering the URL in their browser
- Use NAVER Cloud Platform domain: use the automatically created domain in the type of "random number.edge.naverncp.com" in NAVER Cloud Platform
- Use customer's domain: use domain other than the NAVER Cloud Platform domain. You need to enter the domain to use.
  - If you selected Service Protocol HTTPS, click the [Register certificate] button and register your SSL certificate.
Service region: configure the edge server region to enable caching and delivery of content
- If you select Korea or Japan, content caching and delivery can only be done through the edge servers located in the selected country
- If you select Global (performance first), content caching and delivery can be done through edge servers located around the world over NAVER Cloud and partner networks
- If you select Global (availability first), content caching and transfer can be done through edge servers located around the world over partner networks

2. Origin configuration

Specify the location where the content source is stored.

Select NCP Object Storage Region: select the Region of Object Storage storing content
Select NCP Object Storage bucket: select the bucket of Object Storage storing content

3. Caching

Configure how you want to control the cache.

Default Caching (30 days): caches all objects, and sets the Time-to-Live (TTL) of the cache to 30 days

Note

Other cache settings and optimization settings are automatically applied as follows:

Cache settings
- Negative TTL(s): ON
- Remove Vary Header: ON
- Cache Key Hostname: Incoming Host Header
- Cache key Ignore Query String: ignore all
Optimization setting
- Compressed transfer: ON
- Large file transfer: ON

4. Creation completed

After reviewing the settings, click the [Complete edge creation] button at the top of the page.

The created edge will be automatically added to the list and deployed.
It may take several minutes to tens of minutes for an edge to be deployed.

Creating an edge with Self Integration

To create an edge using Self Integration, follow these steps:

Click the environment you are using in the Region menu and the Platform menu on the NAVER Cloud Platform console.
Click Services > Content Delivery > Global Edge menu, in order.
Select the profile to create an edge for from the Profile drop-down list at the top of the page.
Click the [Create Edge] button.
Once the Edge settings page appears, select Self Integration, and then click the [Next] button.
Enter the edge name, and then click the [Next] button.
- You can use letters, numbers, hyphens (-), and underscores (_) within a range of 3 to 35 characters
Click each setting listed on the left side of the page to configure the detailed settings directly.

Note

When you complete one setting and move on to another, the setting values you entered will be automatically saved.

Deployment settings

Configure the default settings for the edge that you want to deploy.

Service settings

The service configuration items are as follows.

Item	Description
Service protocol	Protocol definition to be used for calling content HTTP: transfer information from the server to the browser in an unencrypted plain text state HTTPS: transfer information from the server to the browser in an encrypted state HTTP and HTTPS: use both HTTP and HTTPS
Service region	Configure the region of the edge server that will allow content caching and transfer If you select Korea or Japan, content caching and transfer can only be done through the edge servers located in the selected country If you select Global, content caching and transfer can be done through edge servers located around the world. Select this if you want to deploy content in a global environment.
Service domain	Set the domain for the client to access Use NAVER Cloud Platform domain: use the domain provided by NAVER Cloud Platform Automatic creation: automatic creation in the form of "random number.edge.naverncp.com" Manual input: if you enter the secondary sub domain, it is created in the form of "input value.edge.naverncp.com" Use customer's domain: use a domain other than the NAVER Cloud Platform domain. Manually enter the domain you want to use. To serve with HTTPS, click the [Register certificate] button and register your SSL certificate

Global Edge Logging

Global Edge Logging allows you to log request information for each object and store it in Object Storage.
Detailed items are as follows:

Item	Description
Select region	Select the Region of Object Storage to save log files
Select bucket	Select the bucket of Object Storage to save log files
Bucket prefix	Enter the detailed path to save the log

Source settings

Configure the source of the content to be cached.

Source settings

The source configuration items are as follows:

Item	Description
Source domain	Enter the domain of the content source for the Edge server to refer to Use Object Storage: if there is the source in Object Storage of NAVER Cloud Platform, designate the Region and the bucket Use Load Balancer: if Load Balancer from NAVER Cloud Platform is the source, select the Region and the name of Load Balancer Use API Gateway: if the API Gateway from NAVER Cloud Platform is the source, select the name of API Gateway Use external source: select this option if the source is located outside Object Storage. Enter the corresponding IP or domain name and designate the Region
Forward Host Header	Configure the host header to be used when forwarding client requests to the origin server. If the source domain is Object Storage, you can set only Origin Hostname. Incoming Host Header: use the host header transmitted as it is when the client made the request. Based on the host header of the service domain. <example> www.navercloud.com Origin Hostname: if the origin server is set to receive only a specific value, convert the host header to the value <example> If the origin server host name is defined as origin1-www.navercloud.com and if you forward the client request for www.navercloud.com to the origin server, the host header will be converted to origin1-www.navercloud.com Custom: set the host header to the value the user specifies. Enter the host header value manually.
Source protocol settings	Configure the port of the origin server that the edge server will connect to. Select between HTTP and HTTPS and enter the port number The default values are 80 for HTTP port and 443 for HTTPS port, and can be edited
Source path	Enter the detailed path of the content source located within the origin server
Origin Shield	Configure an origin shield to protect the origin server from overload due to a large mid-tier cache. Click the toggle button to turn on the feature and select the Region closest to the source as the Region to use.

Note

When selecting API Gateway as the origin, we recommend setting the Forward Host Header to Origin Hostname and the Origin Protocol to HTTPS 443.
Supports integration with API Gateway and Load Balancer services in the VPC environment.

Origin failover

Origin failover is a feature that forwards requests to a backup origin server according to the code when the origin server fails to respond.
Click the [Create] button to set up forwarding rules. Detailed items are as follows:

Item	Description
Rule Name	Enter the name of the forwarding rule
Rule Configuration	Rule configuration IF: set the response code that serves as the condition for the rule THEN: specify the backup origin server. If selecting Object Storage, specify the bucket, or if selecting Custom, enter the IP or domain name

Cache settings

Configure how you want to control the cache.

Default Caching

The default cache settings for all objects are as follows:

Item	Description
Cache options	Set the cache operation Cache: cache objects in the edge server Bypass Cache: directly request to the origin server without caching objects Origin Cache-Control header first: prioritize requesting the value of the Cache-Control indicator set on the origin server
Serve Stale object	Designate the work to conduct when the object cache life is expired (when the content source is unavailable) Serve stale if unable to validate: use expired objects if the cache cannot revalidate its validity with the content source Always revalidate with origin: always revalidate the cache's validity with the content source before using the object
Maxage	Specify the maximum retention period for the cache Set if cache is set as the cache option It can be set from seconds to days

Negative TTL(s)

Using Negative TTL(s) caches error responses from the origin server, reducing the load on the origin server.
When you click the toggle button to turn on the feature, it is applied by default for 10 seconds to 4xx and 5xx HTTP code responses.

Bypass Query String

By using bypass query string, requested URLs that contain specific strings are not cached and are bypassed to the origin server. To configure settings, follow these steps:

Click the Bypass Query String toggle button to turn on the feature.
Enter the string that will be used as the bypass criterion in the query string input field and click the empty space around the input field to recognize the string.
- Repeat this process to enter multiple strings.
Click the [Save] button after entering all the desired strings.
- After saving, you can click the [Edit] button to edit the strings if necessary.

Cache Key Hostname

When configuring cache keys, you can select the hostname to use. Detailed items are as follows:

Item	Description
Incoming Host Header	Include the service domain in the cache key
Origin Hostname	Include the origin server's hostname in the cache key

Cache key Ignore Query String

By default, query strings are not used in the cache key, but you can control object differentiation by changing whether or not they are included or by allowing only specific strings to be used. Detailed items are as follows:

Item	Description
Ignore all	Exclude all query strings from the cache key
Allow all	Include all query strings in the cache key
Allow specific strings	Include only specific query strings in the cache key. Enter the specific query string in the input field and save it.

Ignore case sensitivity in cache keys

Generally, origins are considered to be case-sensitive with respect to the URL's path and file name.
When caching requests, the edge server determines how to handle the case sensitivity of URLs.
Some origin servers, like those using Microsoft IIS, do not differentiate between uppercase and lowercase. If the origin does not distinguish between uppercase and lowercase, activate this feature.

Remove Vary Header

If the response from the origin server contains a Vary header instead of Accept-Encoding, the edge server will not cache the response.
If you turn on the feature by clicking the toggle button, the origin server will respond with a Vary header, but the Vary header will be removed to allow the object to be cached when the actual content is the same.

Edge Auth

To prevent unauthorized sharing of content, you can generate a one-time token and configure it to respond to authenticated requests only. To configure settings, follow these steps:

Click the Edge Auth toggle button to enable the feature.
Select your preferred authentication method between Signed URL and JWT.
- Signed URL: embed authentication credentials in the URL, allowing all clients to access it
- JWT: generate a JSON token with authentication information and place it in the HTTP header to identify the client
- Media Vault: embed authentication credentials in the URL, allowing all clients to access it (service region: available only in Global (performance first), Global (availability first))
Enter the desired name in the Token name input field and click the [Create] button in the token key field.
- The token will be generated and displayed.
- Every time you click the [Create] button, the key value of the token changes.

Rule builder

Configure how to create detailed cache rules and control content.

Detailed cache rules

You can set rules for caching objects on the edge server.
You can click the [Add cache rules] button to add up to 10 rules. Detailed items are as follows:

Item	Description
Rule Name	Enter the name of the cache rule
Rule Configuration	Rule configuration IF: enter rule conditions Directory: enter directory <example> /, /example/* File Extension: enter file extensions <example> .jpg,.png Advanced: enter both directory and file extension <example> /example/.png THEN: set the cache operation to perform Cache: cache objects on the edge server Bypass cache: directly request to the origin server without caching the object Origin Cache-Control header first: first request for the value of the Cache-Control indicator set on the origin server Serve Stale object: designate the work to conduct when the object cache life is expired (when the content source is unavailable) Serve stale if unable to validate: use the expired object when the cache validity cannot be reverified with content origin Always revalidate with origin: always revalidate the cache's validity with the content source before using the object Maxage: specify the maximum retention period for the cache Set if Cache* is set as the cache option It can be set from seconds to days

Item

Description

Rule Name

Enter the name of the cache rule

Rule Configuration

Rule configuration

IF: enter rule conditions
- Directory: enter directory
  <example> /, /example/*
- File Extension: enter file extensions
  <example> .jpg,.png
- Advanced: enter both directory and file extension
  <example> /example/*.png
THEN: set the cache operation to perform
- Cache: cache objects on the edge server
- Bypass cache: directly request to the origin server without caching the object
- Origin Cache-Control header first: first request for the value of the Cache-Control indicator set on the origin server
- Serve Stale object: designate the work to conduct when the object cache life is expired (when the content source is unavailable)
  - Serve stale if unable to validate: use the expired object when the cache validity cannot be reverified with content origin
  - Always revalidate with origin: always revalidate the cache's validity with the content source before using the object
- Maxage: specify the maximum retention period for the cache
  - Set if Cache is set as the cache option
  - It can be set from seconds to days

You can also click the [Advanced settings] button to set more detailed rules.

Item	Description
Rule-based source routing	Provide source branching based on URL prefix. If the request meets the IF conditions, route the source to the specified location Source domain: enter the content source domain you want to route to. You can use Object Storage of NAVER Cloud Platform or an external domain.
Browser cache	Designate the caching operation to send to client from Edge server Behavior: select Allow cache or Not allow cache Maxage: enter the maximum duration when allowing cache
Cache Key Query Parameters	When configuring cache key, set if query character strings are included or not and control caching operations Behavior: select whether to allow or ignore recognition of query strings Ignore all: ignore query strings, and recognize and cache the same object if the filenames are identical Allow all: recognize the query strings, and if the file name is the same but the query strings are different, treat them as different objects and cache accordingly Ignore specific strings: ignore only the entered query strings and recognize objects Allow specific strings: recognize only the entered query strings and recognize objects Parameters: if allow or ignore specific strings is selected, enter the strings to serve as reference
Access Deny	Block access for IF conditions
URL Redirect	If the IF conditions are met, set to respond by redirection without connecting to the origin server Destination protocol: protocol of redirection destination Destination hostname: host name of redirection destination Destination path: path of redirection destination Redirect Status Code: redirection status code
URL Rewrite	If the IF conditions are met, automatically edit the URL of the request Rewrite to…: enter the detailed path of the destination

Note

You cannot apply both URL Redirect and URL Rewrite settings at the same time.

When you save the cache rule, a list of rules is generated.

You can easily view the saved contents in the list.
The priority is automatically applied in the order in which they are saved. To change the priority, click , or drag .
To edit the saved rule, click to edit and click the [Save] button.
To delete the saved rule, click .

Managed rules

When using CDN services, you can configure frequently used features. Detailed items are as follows:

Item	Description
CORS	Add a cross-origin resource sharing (CORS) header to the properties of protected resources called from other domains
HTTP/2	Enable HTTP/2, an open network protocol for transmitting web content. Loading time and resource consumption of web properties are reduced.
True-Client-IP Header	Add the client IP address to the header when forwarding requests to the origin server. You can establish policies based on the client IP using a header on the origin server.
HSTS	Use the HTTPS protocol instead of HTTP for all browser connections to enhance security

HTTP Header Modification

You can set it to override HTTP headers that are sent when making a request to the origin server or when responding to a client. To configure settings, follow these steps:

Click the [Modify HTTP Header] button.
Select the type of header to override.
- Modify Origin Request Header: redefine the HTTP header transmitted when forwarding requests to the origin server
- Modify Client Response Header: redefine the HTTP header sent when responding from the server to the client
Enter the rule.
- Rule Name: enter the Rule name
- Rule Configuration: rules detailed settings
  - Action: select the action to perform from add, edit, and delete
  - Header Name: enter the HTTP header to be targeted by the action
  - Value: if you selected add or edit, enter the header value to apply
Click the [Save] button.
- The rules are saved and a list is created.
- To edit the saved rule, click to edit and click the [Save] button.
- To delete the saved rule, click .

Optimization

Configure ways to improve performance when delivering content to users.

Compressed transmission

Using compressed transmission enables content to be delivered faster by applying compression when delivering content to client browsers or devices that support GZIP or BROTLI compression.
By clicking on the Toggle button to turn on the feature, you can specify the GZIP or BROTLI header in the Accept-Encoding to compress the content.

Compression transmission support extension: css, js, json, xml, html, ttf, otf, woff, woff2, eot

Large file transfer

Using large file transfer allows content to be sent in pieces instead of a single file when requesting content from the origin server, improving origin offloading.
When you turn on the feature by clicking on the Toggle button, optimization for large file transfers will be applied.

Access control

Adjust the range of access to the edge.
You can create a whitelist or blacklist and add three types of access control conditions.

Whitelist: allow access for requests that match the conditions
Blacklist: reject access for requests that match the conditions

Item	Description
IP / CIDR	Control access based on the client's IP or CIDR To add access control criteria, click the [Add IP / CIDR] button and enter the criteria value. Up to 50 entries can be entered To delete criteria, select the checkbox and click the [Delete] button
Geo	Control access based on the country where the client is located To add access control criteria, click the [Add Geo] button and select the country To delete the criteria, select the checkbox and click the [Delete] button
Referer Header	Control access based on the referrer in the HTTP request header To add access control criteria, click the [Add Referer Header] button and enter the criteria value. Up to 50 entries can be entered To delete criteria, select the checkbox and click the [Delete] button

Complete settings

After reviewing the settings, click the [Complete settings] button at the top of the page.

The created edge will be automatically added to the list and deployed.
It may take several minutes to tens of minutes for an edge to be deployed.
To preview the settings, click the [Preview settings] button.

Was this article helpful?

What's Next

Managing Global Edge

Table of contents

Create profile
Creating an edge with Quick Start
Creating an edge with Self Integration