Edit Settings for the Salesforce CDN
Fine-tune the Salesforce content delivery network’s (CDN) default settings to address the unique needs of your storefront domains. Turn image optimization and the web application firewall (WAF) managed ruleset off or on. You can also protect your domain from malicious activity with up to 10 custom WAF rules based on autonomous system number (ASN), IP address, and country.
Required Editions
| Available in: Lightning Experience |
| Available in: Enterprise, Performance, and Unlimited Editions. |
| Applies to: LWR sites |
Unfamiliar with terms like DNS, WAF, and CNAME? Want to review the difference between a URI and a URL? See Custom Domain Terminology.
To customize your domain's Salesforce CDN settings, go to Setup. In the Quick Find box, enter Domains, and then select Domains. Click Edit CDN Settings next to the domain whose settings you want to edit.
Image Optimization
The image optimization feature makes your site pages load faster for guest users, whether they’re viewing your site on their phone, tablet, or desktop computer. For the best site performance, turn on Image Optimization.
Compress Content and Web Resources
Salesforce uses Brotli compression to compress content and web resources for faster page-load times and a smoother delivery. Brotli is a compression algorithm created by Google that can reduce file sizes without sacrificing any significant information.
Accelerate and Secure HTTP Traffic
Quick UDP Internet Connections (QUIC) is a transport layer network protocol designed by Google to improve the performance of web applications over the internet. It's encrypted by default and built on UDP instead of TCP, which makes it more reliable, secure, and faster than traditional internet protocols.
Web Application Firewall (WAF)
A web application firewall protects web applications for potential attacks, such as cross-site scripting (XSS), injection attacks, sensitive data exposure, and security misconfigurations. It analyzes each HTTP or HTTPS request at the application layer.
WAF rules use information about each site visitor to determine whether it’s safe to grant the visitor access to your site. With potentially malicious site traffic filtered out by the Salesforce CDN, your site has more bandwidth and better performance to support valid traffic.
Managed Ruleset
Managed Ruleset is a collection of preconfigured WAF rules that address common security vulnerabilities and protect your site from malicious attacks. The Salesforce CDN partner updates the managed ruleset frequently to address new security threats and to reduce false positives. When you turn on Managed Ruleset, your sites are automatically protected with the most up-to-date security.
Custom Firewall Rules
For more control over incoming site traffic, create up to 10 unique WAF rules. To create each rule, write an expression that includes an operator and a value. Then, specify the action for the Salesforce CDN to take when incoming traffic matches that condition—allow the traffic, block the traffic, or run a managed challenge. Custom WAF rules support simple and complex expressions. See Custom Firewall Rule Expressions on the Salesforce CDN.
- Custom Firewall Rule Expressions on the Salesforce CDN
Custom web application firewall (WAF) rule expressions evaluate incoming traffic based on IP address, autonomous system number (ASN), or country. After you write an expression, choose whether to allow, block, or run a managed challenge on incoming traffic that matches the expression.
