All Products
Search

This Product

    Edge Security Acceleration:Settings

    Document Center

    Edge Security Acceleration:Settings

    Last Updated:Dec 02, 2024

    If your application establishes connections with the origin server over Transmission Control Protocol (TCP) or User Datagram Protocol (UDP), you can enable the TCP/UDP proxy feature to improve application performance and security. The most common TCP or UDP-based scenarios include real-time combat gaming and real-time interactive audio and video streaming.

    Usage notes

    • TCP/UDP proxy is available only in Enterprise plans. You can upgrade to Enterprise and contact us for the feature.

    • If you set the edge port and origin server port to different port ranges, map the edge ports to the corresponding origin server ports and configure request forwarding rules. For example, if you set the edge port to 3000-4000 and the origin server port to 5000-6000, and configure port mapping, requests that are sent to port 3050 are forwarded to port 5050.

    • You can configure up to 30 proxy rules for an application.

    • For UDP-based applications, the Maximum Transmission Unit (MTU) of packets that ESA can forward is 1,300 bytes.

    Procedure

    1. In the left-side navigation pane, click Websites.

    2. On the Websites page, find the website that you want to manage, and click the website name or View Details in the Actions column.

    3. In the left-side navigation pane, choose TCP/UDP > Settings.

    4. Click Create Application and configure parameters based on your business requirements.

      1. Access Configuration

        Parameter

        Description

        Domain Name

        The domain name or hostname that clients access. The system resolves the domain name to the IP address assigned by Edge Security Acceleration (ESA) for clients to access over the Layer 4 protocol.

      2. Proxy Rules

        Parameter

        Description

        Protocol

        The protocol that your application uses at Layer 4. Valid values: TCP and UDP.

        Edge Port

        The port used by clients to access ESA. You can specify one or more ports or port ranges, or a combination of ports and port ranges.

        Separate multiple ports with commas (,). Example: 80,81,82.

        Use a hyphen (-) to specify a port range. Example: 100-200.

        Example of a combination: 80,81,82,100-200.

        Origin Server

        The IP address or domain name of the origin server from which ESA pulls content. You can specify an IP address, domain name, or address of an origin pool or load balancer.

        Origin Port

        The port used by clients to access the origin server. You can specify a port or port range. If you specify a port range for Edge Port, you must specify a port range in the same length as that of Edge Port for Origin Port. If you do not specify a port range for Edge Port, you must specify a single port for Origin Port.

        Pass Client IP

        The proxy protocol over which the originating IP addresses and port information of clients are passed to the origin server. Valid values: Do Not Pass, PROXY Protocol v1, and PROXY Protocol v2. Default value: Do Not Pass.

        Remarks

        Optional. The custom description for the rule.

    5. Click OK.

    Feature availability

    Feature

    Entrance

    Pro

    Premium

    Enterprise

    TCP/UDP proxy settings

    No

    No

    No

    Contact us