It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda WAF-as-a-Service

Basic Configuration

  • Last updated on

To configure the WAF-as-a-Service Content Delivery Network (CDN) for your application:

  1. Set Enable CDN to On and click Save. You can remain on this screen while CDN activates or return later. A notification will pop up once all domains configured for your application are listed along with the associated TXT keys.
  2. Configure your DNS by adding the TXT verification records to match these values. You can used the copy icons to easily capture the values to use when creating the records. Domains will automatically show as Approved once the records have propagated through the DNS system. How long this will take depends on the Time To Live established with each one.
  3. Once all domains are Approved, you can set Route traffic through CDN to On. This begins the rollout of your application in the CDN network. Again, you do not need to remain on this page and you will be notified once rollout is finished.
  4. Once rollout is complete, the Enable CDN setting will no longer be active and Block traffic not sent through CDN will become active. Enabling this will ensure all traffic goes through CDN and prevents other routes. However, doing so immediately could block legitimate traffic that is not routed via CDN yet, so it is a good practice to wait a few hours before blocking direct traffic.

Note: WAF-as-a-Service will automatically effect the following configuration changes once CDN is enabled:

  • Increases the Max Number of Headers to a minimum of 40 in the Request Limits policy.
  • If you have CAPTCHA enabled within your security policies, you need to change them to use reCAPTCHA v2 or reCAPTCHA v3 for them to work correctly in conjunction with the CDN (hint: DDoS and the Bot Protection components).
Last updated on