1. Modify configuration
Global Config page, you can deploy the default configurations of gateway
General, main categories are listed on the right side of
General page. Click one
category to quickly enter the setting options section.
Categories now include: Worker, SSL, Proxy, Client Request, File Buffer, Log, DNS, Gzip, Port, and Others.
Worker connections can be used to control the maximum
default connections for each work process.
Change the number to
10777 and click the
Save button on the right
If saved successfully, the change will be automatically synchronized to all gateway nodes in the corresponding partition.
SSL ciphers and
SSL protocols , four default options are
Modern: Suitable for modern client sides.
Intermediate: Intermediate version, the default recommended option.
Old: Suitable for old client sides.
Custom: Customize when the above three default options fail to meet your needs.
Proxy category, you can set
Proxy Cache Zone,
Proxy Temp Path and other configurations.
Proxy Cache Zone: If there are multiple disks, you can set multiple
Proxy Cache Zoneto distribute cache to different physical disks for enhanced performance.
Proxy Temp Path: Custom path used to store temporary files returned from proxy service.
HTTP client request
HTTP client request configuration items:
Client body temporary path
Defines a directory for storing temporary files holding client request bodies.
Reading client request body timeout
This configuration item defines the timeout for reading the client request body. The timeout is only for the period between two consecutive read operations, not for the entire request body transmission time. If the client does not transmit anything during this time, the request will be terminated with a 408 (request timeout) error.
In general, the default timeout of 60 seconds is sufficient. If you wish to reduce the timeout to defend against attacks, you can modify this configuration item. You can also extend this timeout if you need to use a longer timeout in some cases.
Default: 60 Secs
Reading client request header timeout
Defines a timeout for reading the client request header. If a client does not transmit the entire header within this time, the request is terminated with the 408 (Request Time-out) error.
Default: 60 Secs
Maximum request body size
Sets the maximum allowed size of the client request body. If the size of a request exceeds the configured value, the 413 (Request Entity Too Large) error is returned to the client. Please be aware that browsers cannot correctly display this error. Setting the size to 0 disables checking of client request body size.
Default: 1 MByte
Request header buffer size
Sets buffer size for reading client request header. For most requests, a buffer of 1K bytes is enough. However, if a request includes long cookies, or comes from a WAP client, it may not fit into 1K.
Default: 1 KByte
Maximum request body buffer size
Sets buffer size for reading client request body. In case the request body is larger than the buffer, the whole body or only its part is written to a temporary file. By default, the buffer size is equal to two memory pages.
Default: 8 KByte
The first parameter sets a timeout during which a keep-alive client connection will stay open on the server side. The zero value disables keep-alive client connections.
Default: 75 Secs
Sets a timeout for transmitting a response to the client. The timeout is set only between two successive write operations, not for the transmission of the whole response. If the client does not receive anything within this time, the connection is closed.
Default: 60 Secs
Trusted hosts to set real IP
Use the Real IP header to modify the source IP only when the client IP of the TCP connection is in this list of trusted addresses.
Real IP header
The HTTP header name which to fetch the Real IP from.
Change the Real IP header name from the default X-Forward-For to the specified name.
Recursive search IP
When multiple IP addresses exist in the Real IP header field, the first untrusted address is looked up from back to front as the client’s real client IP.
Log category, you can exercise customized control over
error log and
access log outputs.
Avoid generating error logs: it is in
DISABLEstatus by default, and enabling it means not outputting any error logs.
Logs Path: Output path of error logs.
Error log level: Output level of error logs.
Maximum number of log files to keep: Maximum number of logs to keep,
error log and
access log will rotate every hour to save disk space
by only keeping last updated log files.
To increase the speed of writing access logs, Buffer Zone is enabled by default. The size of the buffer zone can be adjusted to an appropriate value falling somewhere between performance and resource usage.
Just set the buffer zone size at
0 if you don’t want to enable it.
Gzip category, default options for Gzip such as Enable switch
and compression level can be selected. The Gzip function Enable switch
also allows you to specify the Gzip status in the application in light
of different conditions.
Others category, you can set the cleanup policy for
operation logs and application release history.
2. Sync option
Sync option is displayed above the
General page, and the
default partition is displayed by default. The option
Automatic Synchronization indicates that all configurations of the current partition will automatically overwrite the configurations of all other partitions.
Automatic Synchronization is checked, only the
default partition is allowed to be modified.
Automatic Synchronization, the changes of each partition will not be automatically synchronized to other partitions, so if you want to synchronize the configuration of the current partition to other specified partitions, click on the option
Copy to other Partitions in the upper right corner.
Then select the partition you want to synchronize and click
copy, the configuration of the current partition will overwrite the configuration of the specified partition.