Reblaze Setup Checklists

Easy-to-use checklists for starting and testing Reblaze

Overview

Please go through these checklists, and verify that their actions have been completed, both before and after your traffic is routed through Reblaze.

There are three checklists below: two for setup, and one for testing.

Prerequisite

Before going through the checklists below, you should already have performed the actions listed in Getting Started.

Configuring your environment

Item

Action

More Information

Web Server Firewall

& Hosting Firewall

Verify that Reblaze IPs are whitelisted in the firewall.

Also, please ensure that only Reblaze IPs are able to access your web server, i.e. block access for all non-Reblaze IPs. This can be done via a set of rules for your firewall, or via .htaccess files.

Rate Limits

Verify that you're not using any Rate Limit/QOS rules that apply to Reblaze IPs.

This avoids potential blacklisting of Reblaze, and other availability issues. (If Rate Limits are applied, Reblaze can be misidentified as a DDoS source.)

Website Cache Settings

Ensure that each site/application returns the correct caching instructions.

Setting up Reblaze

Item

Action

More Information

Upstream Server

Verify that the Web Proxy settings for each domain/site are correct. (These settings define where and how Reblaze forwards incoming traffic.)

SSL

Non- Browser Applications

If your application serves bots or other non-browser clients (e.g., monitoring services, mobile/native applications using an API, etc.), you will need to exempt them from Reblaze's browser challenges.

HTTPS

Enable traffic via HTTPS.

Block Known Sources

Define ACL Policies to reject traffic from sources known to be hostile (e.g., IPs, countries, etc.)

Whitelist Known Sources

Exempt specific traffic sources from inspection and filtering.

Web Application Firewall (WAF)

DDoS Settings (Rate Limits)

Cache Settings

Alerts

Review and customize alerts and notifications according to your needs.

Account

Sometimes new customers enter placeholder values at first. Ideally, correct values would be in place by the time Reblaze is active.

Testing your setup

When the following checklist has been completed, you'll be ready to go.

Note: by default, Reblaze is deployed in Report mode for all applications. In this mode, it will not block traffic; it merely reports on the traffic it would have blocked, if that application had been set to Active mode.

Item

What to verify

More Information

Check DNS

Run a DNS query for the website, and validate that the DNS records of the HTTP/S services are pointing to Reblaze CNAME /IPs only.

Test Traffic

Test Non-Browser Clients

If applicable, generate and test traffic from non-browser clients, and verify via the Dashboard that the requests are not blocked/reported.

This is to validate the (optional) settings configured for non-browser clients, as described in the checklist above.

Monitor and Optimize Settings

Last updated