Configure CDN Distribution

• Select the Content Delivery Network service. The CDN distribution configuration page opens.

• Go to Manage > Distributions.

• Select Add Distribution.

• In the Name field, enter a name for the distribution.

• Optionally, select a label and enter a description.

• Go to Basic Configuration and enter a domain name in the Domains field. Ensure that you enter an FQDN.

• Select Add item to add more domains, if needed.

• Select an option for the Select Type of CDN Distribution. The following options are supported:

  • Select HTTP to create the HTTP Distribution. Select the Automatically Manage DNS Records checkbox if your domain is delegated to F5 Distributed Cloud. Else, ensure in your DNS provider configuration that your domain is resolved.

  • Select HTTPS with Automatic Certificate to create the HTTPS Distribution with an automatic TLS certificate. Ensure that the domain is delegated to F5 Distributed Cloud. Optionally, select HTTP Redirect to HTTPS and Add HSTS Header checkboxes to enable those functions. You can also select TLS security level to be high or medium.

  • Select HTTPS with Custom Certificate to create the HTTPS Distribution with your custom TLS certificate.

• If you are using the HTTPS with Custom Certificate option:

  • Set the TLS configuration using the Configure option under the TLS Parameters field.

  • From the TLS Security Level drop-down menu, select the desired level.

  • In the TLS Certificates section, Select Add Item.

  • For the certificate URL encoding, select PEM or base64(binary), and then enter the certificate URL.

  • To configure the private key, Select Configure.

  • Under the Secret section, enter your private key in Text type, Select Blindfold, wait for the Blindfold operation to complete, and then Select Apply.

  • Select Add Item.

  • In the TLS Parameters section, Select Apply.

  Note: You can add more than one certificate using the Add Item option.

This example configures a CDN Distribution of type HTTPS with Automatic Certificates.

• Select Configure in the CDN Origin Pools section. The CDN origin pool configuration page opens.

• Enter the CDN origin domain name in the DNS Name field. The requests to origin servers use this name in the host header.

• Select a TLS choice in the Enable TLS for Origin Servers field. Ensure that this matches your origin server configuration.

• Select Add Item in the List of Origin Servers section. In the origin servers page, enter public DNS name or public IP of your origin server. Select Apply.

• Enter a time value in the Origin Request Timeout Duration field. The default is 60s (sixty seconds).

• Select Apply in the CDN origin pool configuration page.

Advanced configuration consists of options such as header control, security, cache control, etc. Go to Advanced Configuration section and perform the following:

• Select Show Advanced Fields toggle to display the advanced configuration options.

• Select Add Location checkbox to append the location header in the response. Value for this header is the Regional Edge Site name that serves your request.

Select Save and Exit.

It might take a few minutes for your CDN Distribution to be deployed and to be ready to cache and serve content at Regional Edges. Select > against your distribution object and expand its JSON view. Verify that the service domain is created. Select ... > Show Global Status against your CDN object and ensure that the Site Status section shows status as DEPLOYMENT_STATUS_DEPLOYED.

Delegated Domain with Automatic Certificates:

• Wait for the DNS Info and Certificate status to display the VIRTUAL_HOST_READY and Certificate Valid values.

• Verify that the requests to your CDN domain are processed, and the content is returned.

Note: In case of content updates in your origin servers, you can force the CDN servers to fetch the updated content using the purge option. Select ... > Purge for your distribution object and the CDN service initiates purge for all the cache servers. Purging manually does not immediately delete content, but marks content as expired. When expired content is requested, the CDN service performs a HEAD request to the origin. If the CDN finds that the content time stamp is not changed, the existing expired entry is marked as active. This prevents a re-fetch from the origin and saves time and bandwidth in redownloading the content.

• Select the Content Delivery Network service. The CDN distribution configuration page opens.

• Go to Manage > Distributions.

• Click ... for the distribution for which you want to purge content, and then click Purge.

• Enter a string that specifies the content you want to purge from your distribution. The string should be entered in Regex form. For example, "images/.*.(png|jpg)" will match PNG and JPEG files in the images directory.

• Select an option from the Purge Type drop-down menu to specify how the purge is to operate.

  • Soft Purge invalidates the cache entries, which means the content will be replaced on the next request if the content is stale.
  • Hard Purge removes the content from the distribution and forcing the next request to retrieve the content from the origin server.

• Click Save and Exit to deploy the purge.

Note: You can also deploy a purge from the Cache Purges tab of the Peformance Monitoring page. See Cache Purges Tab below.

The Dashboard view offers the following:

• Time series view for statistics such as Requests, Data Transfer, and Bandwidth. This is shown in a graph where hits and misses are displayed. Hover over the graph to see specific quantity information for that time point.

• Donut chart for cache hit versus miss ratio.

• HTTP Status codes show the number of response codes in each of the categories. Hover over the horizontal bar to see the values expressed as percentages.

• Latency shows the time taken between requests and responses for both hits and misses.

• HTTP version metrics.

• TLS version metrics.

• Client requests by country. Hover over a country to see the number of requests originating from that country.

• Top 5 countries providing requests, shown as a bar chart. Hover over a bar to get the specific value for that country.

The Requests tab provides greater insight into requests. There is a bar chart as well as a list of the incoming requests. Use the time period drop-down menu and refresh button to set the time constraint and update the data shown.

Interact with the bar chart as follows:

• The bar chart at the top shows the number of requests and response codes in each time period.

• Use the Add Filter to see only certain request based on your filter selection.

• Use the colored check boxes below Add Filter to quickly filter out specific response types.

• Hover over a bar to get specific bar values (request counts) for that time period.

• Select and drag within the bar chart to zoom into a range of time. Use the time period drop-down menu to zoom back out.

The list view below the chart shows specific information for individual requests. The time period and filters also affect the requests shown in the list view.

Interact with the list view as follows:

• Use the Search field to only show list entries that match your search criteria. The search will work for all items in the list, not just the items on the current page; however, the search will not find information in columns that are not displayed (see the gear icon description below).

• Select the gear icon ( ⚙ ) to select which columns are shown in the list view. Time and Client IP will always be shown.

• Select the arrow ( > ) at the beginning of the row to see the specific request in JSON or YAML format.

You can also select the blue Forensics side tab to view the Forensics side panel. This is an easier way to filter your request to zero in on specific issues. For instance, you can filter by site and by top request page simply by selecting check boxes in the Forensics panel. This will create a search query for the filter at the top of the window.

Select the Alerts tab to load the alerts view. The active alerts are displayed by default.

You can filter the display for alerts of a specific severity using the severity selection options. All severity types are selected by default. Select a severity selection option to hide the alerts for that severity. You can again select it to display alerts for that severity.

Note: Severity selection options are color-coded and located above the Add filter option.

Use the toggle selector and select All Alerts. The All Alerts view shows graph for alerts over a specific period. The list of alerts is displayed beneath the graph.

Hover mouse pointer over a graph bar to view the alerts information specific to the time interval in which the bar is generated. Selecting the bar updates the graph and the list beneath the graph for the interval in which the bar is generated.

Select > for any alert entry to display its details in JSON format.

The Cache Purges tab show past purges for your distribution in a table. Each row in the table provides a unique ID for the purge, the version and information on the date/time of the purge. To see details of the purge, click ... > Show Status in the Actions column for the purge you want to view.

This displays a table showing the sites that were purged and some overview information about each site's purge. For details on the site purge, click the ID in the Service OP ID column for the site.

Click Back to view more site purges or click Cancel and Exit to return to the Cache Purges page.

You can also deploy a cache purge from here by following these steps:

• Click Add Cache Purge.

  

• Specify the files your want to purge in the `Pattern (RegEx) field.

• Select either Soft Purge or Hard Purge.

• Click Save and Exit to deploy the purge.

This will create a new entry in the Cache Purges table providing information on your purge.

Note: You can also deploy a purge from the Distributinos page. See Purge Content in Cache below.