Standard TLS Migration
Migrates traffic to Standard TLS. Apply this behavior within the default rule or any hostname match. In some cases you may need to apply this along with the Standard TLS Migration Override behavior.
Features and options
| Field | What it does | Sub-options |
|---|---|---|
| Standard TLS Migration | Enables or disables this behavior. | |
| Migration From | Specify where you are migrating traffic from. |
|
| Allow Temporary Protocol Upgrade | With Migration From set to Non-Secure, allows temporary upgrade of HTTP traffic to HTTPS. | |
| Allow Temporary Protocol Downgrade | With Migration From set to Non-Secure, allows temporary downgrade of HTTPS traffic to HTTP. This removes various Origin, Referer, Cookie, Cookie2, sec-* and proxy-* headers from the request to origin. | |
| Cache Migration Start Time (GMT) | With either Allow Temporary Protocol Upgrade or Allow Temporary Protocol Downgrade enabled, specifies when to start migrating the cache. | |
| Cache Migration Duration (Days) | With either Allow Temporary Protocol Upgrade or Allow Temporary Protocol Downgrade enabled, specifies the number of days to migrate the cache. | |
| Cache Sharing Start Time (GMT) | With Migration From set to Enhanced TLS - Customer Certificate, specifies when to start cache sharing. | |
| Cache Sharing Duration (Days) | With Migration From set to Enhanced TLS - Customer Certificate, specifies the number cache sharing days. | |
| Is your new certificate SNI-Only? | With Migration From set to Enhanced TLS - Customer Certificate, sets whether your new certificate is SNI-only. | |
| Do you use Tiered Distribution behavior? | With Migration From set to Non-Secure, lets you align traffic to various Tiered Distribution areas. | |
| Tiered Distribution Location | With Do you use Tiered Distribution behavior enabled, specifies the Tiered Distribution location. |
|
Updated about 3 years ago