API
The Gcore Customer Portal is being updated. Screenshots may not show the current version.
CDN
CDN
For static filesFor the entire site
AWS S3B2evolutionClouldFlareConcrete5CraftCs-cartDjango CMSDrupalGoogle Cloud StorageIPBIPSJoomlaKirbyMagentoPerchPrestaShopPyroCMSSocialEngineTypo3vBulletinWebasyst
Gcore pluginRocket pluginW3 Total Cache pluginWP SuperCache plugin
X-CartXenForo
Integrate CDN with FastEdge
Add CDN servers to ACLHTTP/2
Timeouts
BillingCDN resources overview
Specify an originPrivate originEnable SSL ValidationCreate a custom domain (CNAME)SSL certificatesEnable shielding (paid)Suspend a CDN resourceConnection and read timeouts
Configure CDN cachingSet a redirect from an originConfigure browser cachingIgnore Set Cookie or Query stringUse stale cache if origin is unavailableCache ShardingModify cache key
Manage access policiesRedirect from HTTP to HTTPS
OverviewConfigure and use
Specify HTTP methodsSet SNI hostname
Gcore WAAP (Beta)
GZip, BrotliFetch
Status codeLarge files deliveryRewriteWebSockets
Add request headersActivate CORSConfigure response headersManage the Host headerIdentify a user's request protocol
Network limits
Image stack overviewEnable Image stack
Convert to WebP or AVIFChange qualityCropResize
Troubleshooting
Streaming via CDN (for paid tariffs)Geobalancer (for paid tariffs)
Create a ruleCreate a template for rulesAvoid indexing
Origin group
SSL overviewOwn SSL certificateLet's Encrypt certificate
PurgePrefetch
Raw logsLogs uploader (near real-time)Log Viewer (free)
Reports
Grafana reports
Install and integrate with CDNCreate and manage CDN resourcesCopy CDN resourcesCreate a CDN ruleAdd an SSL certificateSet up version control and perform rollback
Error status codesTraceparentContent unavailabilityLow cache hit ratioLow content delivery speedAttaching or issuing an SSL certificate3xx codes4xx codes5xx codes
API
Chosen image
Home/CDN/CDN resource options/cdn security/Gcore WAAP (Beta)

Protect CDN resources with Gcore WAAP

Gcore Web Application and API Protection (WAAP) combines all aspects of website security and traffic management, including Layer 7 DDoS protection, web app security, and API protection.

With built-in security rules, advanced behavioral analytics, and a range of available customization options, Gcore WAAP protects your domains against known vulnerabilities and common exploits.

Enable WAAP for a resource

1. In the Gcore Customer Portal, navigate to CDN > CDN resources.

2. Next to the resource that you want to protect with WAAP, click the three-dot icon and select Settings.

CDN resource settings page in the Customer Portal

3. Scroll down the page and find the Security section.

4. Enable the WAAP toggle to activate Web Application and API Protection for your CDN resource.

WAAP toggle

5. Click Save to apply the changes.

After enabling WAAP in CDN, you need to invalidate the cache. This is necessary to ensure that WAAP settings are properly applied. When "Secure Token" and/or "Referrer access policy" CDN options are enabled in conjunction with WAAP, the CDN may block WAAP requests.

These limitations will be removed soon.

Consider that it might take up to 20 minutes for the HTTP traffic to start passing through our WAAP after the activation.

What to do if WAAP blocks content that shouldn’t be blocked?

Instead of disabling WAAP protection for the whole resource, you can create a rule with an exception:

1. In the CDN resource settings, open the Rules tab.

2. Click Create rule > Create blank rule.

3. Give your rule a name.

4. In the Match criteria section, specify the URLs or a regular expression of files blocked by WAAP.

5. Set the origin pull protocol to Inherit from resource.

WAAP toggle

6. In the Options section, click Add option.

7. Find WAAP and then turn it off for the selected URL rule pattern.

8. Click Create rule.

Your content should no longer be blocked by WAAP.

Was this article helpful?

Not a Gcore user yet?

Learn more about our next-gen CDN

Go to the product page
Edit on GitHub