CDN compliance management best practices

更新时间:
复制 MD 格式

Lists the default CDN compliance rules that check access control, caching, performance, and cost configurations for Alibaba Cloud CDN domain names.

Rule name

Rule description

cdn-domain-tls13-enabled

Checks whether TLS 1.3 is enabled for each CDN domain name. Compliant if enabled.

cdn-domain-enabled-cache

Checks whether a cache and cache expiration rule are configured for each CDN domain name. Compliant if configured.

cdn-domain-https-enabled

Checks whether HTTPS is enabled for each CDN domain name. Compliant if enabled.

cdn-domain-oss-source-check

Checks whether the origin server of each CDN domain name is set to an OSS domain name with origin type set to OSS. Compliant if true.

cdn-domain-ipv6-enabled

Checks whether IPv6 is enabled for each CDN domain name. Compliant if enabled.

cdn-domain-brotli-enabled

Checks whether Brotli compression is enabled for each CDN domain name. Compliant if enabled.

cdn-domain-ocsp-stapling-enabled

Checks whether OCSP stapling is enabled for each CDN domain name. Compliant if enabled.

cdn-domain-https-force-enabled

Checks whether HTTP-to-HTTPS force redirect is enabled for each CDN domain name. Compliant if enabled.

cdn-domain-range-enabled

Checks whether object chunking is enabled for each CDN domain name. Compliant if enabled.

cdn-domain-ignore-args-enabled

Checks whether parameter ignoring is enabled for each CDN domain name. Compliant if enabled.

cdn-domain-gzip-enabled

Checks whether Gzip compression is enabled for each CDN domain name. Compliant if enabled.

cdn-domain-aliauth-enabled

Checks whether URL signing is enabled for each CDN domain name. Compliant if enabled.

cdn-domain-referer-enabled

Checks whether referer-based hotlink protection is enabled for each CDN domain name. Compliant if enabled.