L4 proxy provides customer-grade DDoS protection and layer-4 acceleration services for TCP/UDP applications. By leveraging widely distributed layer-4 proxy nodes, unique DDoS module, and smart routing technology, EdgeOne implements nearby access for end users, edge traffic cleansing, and port monitoring and forwarding. It thus offers high-availability and low-latency security and acceleration services for layer-4 applications.
- The EdgeOne console is not yet fully available. To access the console, please contact us for activation.
- Only one L4 proxy can be created for each site. To create multiple proxies, please contact us.
- L4 proxy provides customer-grade DDoS protection capability by default, which cannot be disabled.
- L4 proxy currently doesn't support IPv6 origin servers.
Service name: Name of the layer-4 proxy instance. The number of instances that can be created is subject to the site package.
Scheduling mode: Select the method of connecting the layer-4 proxy service.
If site acceleration is also enabled for the host, the scheduling mode can only be set to "CNAME".
Proxy mode: Configure the layer-4 proxy mode.
On the L4 proxy service creation page, click Add rule and configure Forwarding rules parameters.
You can add up to 100 forwarding rules for each L4 proxy.
Forwarding protocol: TCP and UDP are supported.
Forwarding port: The supported port range is 1–64999, excluding 36000 and 56000. You can enter multiple ports separated with commas or use a hyphen to enter a port range. You can enter up to 20 ports in a forwarding rule.
If site acceleration is also enabled for the host, forwarding ports 80 and 443 are not supported.
Origin server type/information:
Pass client IP: Specify how real client IPs will be carried when layer-4 proxy nodes are used for origin-pull.
Session persistence: As long as an origin server IP remains unchanged, traffic from the same client IP will always be forwarded to it.
When you create or view a L4 proxy, forwarding rules can be imported in batches.
test.origin.com:456, or an origin group in the format of
tcp:123 test.origin.com:456 on ppv1 udp:2330 og:l4testkb off ppv2
The configuration is shown as below: