Information for: DEVELOPERS   PARTNERS   SUPPORT

Edge Product Guide

Note

For additional information about Edge, see its product documentation.

Last updated: March 24, 2022

Acquia will provide Edge services only if purchased by Customer, as indicated in the Order. A prerequisite for use of any Edge service is one or more production Domains using Cloud Platform Enterprise or Site Factory.

For purposes of this section, “Domain” means a Customer domain configured for use with the Edge service that maps to IP addresses or CNAME records provided by Acquia. Acquia treats each of the following as a separate Domain:

  • example1.com
  • www.example1.com
  • example3.com

Any subdomains managed as a distinct configuration are considered as distinct domains.

Customer is limited to a total monthly traffic throughput (TB/mo) for a total number of domains/hostname(s), as indicated on the Order. In the event such limit is exceeded, Acquia will notify Customer (email is acceptable) of such excess and, within ten (10) days of such notice, Customer will either (i) execute an Order with Acquia for the applicable number of additional domains/hostnames and TB of traffic per month required and pay all applicable fees or (ii) remove the domains/hostnames necessary to comply with its subscription. Acquia reserves the right to remove domains/hostnames in the event Customer does not comply with the foregoing.

1. Edge CDN

Edge CDN is a global content delivery network designed to improve the reliability, offload, and network performance of Customer’s infrastructure. Edge CDN speeds and secures web applications, helping Customer scale to meet sudden needs. The Edge CDN service utilizes data centers around the world, except mainland China, to accelerate the delivery of the Customer website content. The specific performance & security measures of Edge CDN include, tiered caching, content optimization & compression, and SSL/TLS.

1.1. China CDN

If the Customer requires fast website load times within mainland China through the use of mainland China data centers, an optional Edge CDN China CDN service is available. Use of the Edge CDN China service requires the Customer to have or obtain a valid Internet Content Provider (ICP) license from the Chinese government. Without Edge China CDN, all content will be delivered from servers outside of China.

2. Edge Security

Edge Security is a service that provides a web application firewall (WAF) and distributed denial-of-service (DDOS) protection designed to help mitigate the effects of online threats and optimize legitimate visitor requests for protected websites.

Acquia will provide the Edge Security service for up to the number of Domains specified in the applicable Order.

2.1. Edge Security Rate Limiting Add-on

Edge Security Rate Limiting is a service that mitigates denial-of-service attacks, brute-force login attempts, and other types of high-volume, abusive behavior targeting the application layer.

Edge Security Rate Limiting provides the ability for Customer to configure request rate thresholds, define responses, and gain insight into specific URLs of Customer websites, web applications, or API endpoints. It provides granular HTTP/HTTPS traffic control as defined by the Customer that complements the Edge Security DDoS protection and Web Application Firewall (WAF) solution.

Edge Security Rate Limiting requires Edge Security and is available for use if purchased by Customer, as indicated in the Order.


3. Edge Web Application & API Protection

Edge Web Application & API Protection (WAAP) is designed to improve the security posture of Customer’s protected Domains and API endpoints, and reduce the likelihood and impact of application-level and denial of service attacks by mitigating attacks in the Edge network before they reach Customer’s origin infrastructure.

Edge WAAP includes configurable functionality designed to protect Customer Domains by reducing the risk and impact of attacks at the network and application layers. Edge WAAP provides rate control protections to mitigate the risk of DoS and DDoS Attacks, as well as common attack methodologies such as SQL injection, cross-site scripting, and Trojan backdoors. The specific security controls included in Edge WAAP include, “Slow POST” protection, rate controls, network layer controls, and application layer controls. Edge WAAP provides tools that enable the definition and enforcement of security policies specific to client IP, HTTP method, and other request parameters.

Edge WAAP includes all the capabilities of Edge CDN.


4. Edge Bot Manager

Bot Manager is designed to use a number of different detection techniques in order to: (i) determine if a client making a port 80 HTTP or port 443 HTTPS request on the Edge network is a human or a bot and (ii) categorize the bots into known bot categories and unknown detected bot categories. Customer may set policies to apply different response actions to different categories of bot traffic. Bot Manager requires the purchase of Edge WAAP & Bot Management, which also includes the services provided by Edge Web Application & API Protection.


5. Edge Add-ons

Edge includes the following add-ons that you can use to extend its core functionality:

5.1. Edge Access Add-on

The Edge Access add-on allows users to secure, authenticate, and monitor user access to any domain, application, or path on Edge. Customers can quickly apply application-level user access permissions using existing single sign-on providers. This add-on has a 24x7 critical response SLA, and is available only for Edge CDN and Edge Security (the purchase of both of these Edge-related products is encouraged). Entitlements for this add-on are based on the total number of access seats purchased by the Customer for their subscription.

5.2. Edge Argo Smart Routing Add-on

The Edge Argo Smart Routing add-on improves performance with dynamic routing that finds the fastest traffic path within your network. Argo’s Smart Routing algorithm uses real-time network information to route traffic across the fastest paths available, and maintains open, secure connections to eliminate latency imposed by connection setup. Argo’s tiered caching technology uses regional tier 1 Edge data centers to propagate content to Edge’s global network, minimizing requests to servers and reducing costs. This add-on has a 24x7 critical response SLA, and is available only for Edge CDN and Edge Security (the purchase of both of these Edge-related products is encouraged). Entitlements for this add-on are based on bandwidth and requests purchased by the Customer for their subscription.

5.3. Edge Cache File Limit Increase (1 GB) Add-on

The Edge Cache File Limit Increase (1 GB) add-on allows for an increase to the maximum size for files stored in cache. The default configuration for Edge CDN is 2 GB; however, this limit may be increased up to 20 GB total by purchasing the applicable number of Edge Cache File Limit Increase (1 GB) add-ons. This add-on has a 24x7 critical response SLA, and is available only for Edge CDN. Entitlements for this add-on are based on the total size of the cache (GB) per file.

5.4. Edge Dedicated SSL Certificate Add-on

The Edge Dedicated SSL add-on provides customers with existing Edge CDN and Edge Security subscriptions with the specified number of dedicated SSL certificates signed by a valid certificate authority for a domain(s) managed through Edge. This add-on has a 24x7 critical response SLA, and is available only for Edge CDN and/or Edge Security (the purchase of both of these Edge-related products is encouraged). Entitlements for this add-on are based on the total number of certificates.

5.5. Edge Load Balancing Add-on

The Edge Load Balancing add-on improves network performance and redundancy by balancing traffic across multiple servers and routing to the closest geolocation. Load balancing distributes traffic across servers that are located at either single or multiple origin locations across the globe to ensure high availability of applications. Additionally, the Edge Load Balancing add-on operates at the DNS level and supports any protocol, from HTTPS to TCP and UDP-based services. This add-on has a 24x7 critical response SLA, and is available only for Edge CDN and Edge Security (the purchase of both of these Edge-related products is encouraged). Entitlements for this add-on are based on DNS queries, requests, and bandwidth per month, and number of total origin pools purchased by the Customer for their subscription.

5.6. Edge Mutual Transport Layer Security Add-on

The Edge Mutual Transport Layer Security (TLS) add-on creates a secure connection between a client, such as an Internet of Things (IoT) device or a mobile app, and its origin. This add-on has a 24x7 critical response SLA, and is available only for Edge CDN and Edge Security (the purchase of both of these Edge-related products is encouraged). Entitlements for this add-on are based on the total number of devices purchased by the Customer on their subscription.

5.7. Edge Secondary DNS Add-on

The Edge Secondary DNS add-on allows for configuration of Edge as the secondary DNS provider. Both Edge’s DNS and the primary DNS provider see DNS traffic, with recursive servers deciding which DNS to use. This add-on has a 24x7 critical response SLA, and is available only for Edge CDN and/or Edge Security (the purchase of both of these Edge-related products is encouraged). Entitlements for this add-on are based on DNS queries per month.

5.8. Edge Workers Add-on

Edge Workers allows Customer to write V8 JavaScript code that is securely run at the network edge. The JavaScript code uses a derivative of the W3C standard Service Workers API running on the Edge servers to perform actions such as route, filter, or respond to HTTP requests that would otherwise need to be run on the Customer origin in the Acquia Platform. Note that Edge Workers does not support the Node.js runtime because Node is not designed to be a sandbox, which is required to isolate running code from other processes for optimal security at the edge.

Edge Workers is an add-on product that requires Edge CDN and/or Protect and is available for use if purchased by Customer, as indicated in the Order. Customers are responsible for writing, debugging, and maintaining their own JavaScript code run by Edge Workers. Acquia will not support creation, maintenance, troubleshooting, or any other support activities related to customer, vendor or third-party created code. This includes, but may not be limited to customer, vendor, or third-party created recipes or code templates that can be added to the Workers product. If Customer-created JavaScript is impacting the flow of requests to the Customer application in the Acquia Platform, Customer will be required to disable all JavaScript code run by Edge CDN Workers before Acquia Support can diagnose the issue.

5.8.1. Edge Workers KV Add-on

The Edge Workers Key-Value Store (KV) add-on allows your Workers add-on to have access to a low-latency key-value data store which lives inside our network all around the world. The Workers KV add-on is a highly distributed, eventually-consistent, key-value store, and allows you to store up to a billion keys and values, and read them with ultra-low latency anywhere in the world. The add-on also makes it possible to build entire applications with the performance traditionally associated with static content cached by a CDN. In addition, the Workers KV add-on has a 24x7 critical response SLA, and is available only for Edge CDN and Edge Security (the purchase of both of these Edge-related products is encouraged). Entitlements for this add-on are based on the total number of bandwidth and requests used per month.


6. Edge Service Level Agreement

The following Edge Service Level Agreement (“Edge SLA”) sets forth Acquia’s commitment to provide a level of service to each Edge Customer. Acquia will use commercially reasonable efforts to make Edge Services available 100% of every calendar month during the applicable Subscription Term. In the event Acquia does not meet the Edge Service Level, Customer will be eligible to receive an Edge Service Credit as described below.

6.1. Edge SLA Definitions

Capitalized terms used in this Edge SLA and not otherwise defined have the meanings ascribed to them in the Subscription and Services Agreement.

  • Affected Customer Ratio is calculated as follows:

    Affected Customer Ratio = (Unique Visitors as measured by IP address affected by Unscheduled Service Outage) / (Total unique visitors as measured by IP address)

  • Claim means a claim submitted by Customer to Acquia pursuant to this Edge SLA that an Edge Service Level has not been met and that an Edge Service Credit may be due to Customer.

  • Customer refers to the organization that has signed a Subscription Services Agreement under which it has purchased Edge Services from Acquia.

  • Customer Support means the services by which Acquia may provide assistance to Customer to resolve issues with the Edge Services.

  • Edge Service means Edge Security and/or Edge CDN services, as further described in an Order Form.

  • Edge Service Credit is the percentage of the monthly service fees for the Edge Service that is credited to Customer for a validated Claim.

  • Edge Service Level means standards Acquia chooses to adhere to and by which it measures the level of service it provides as specifically set forth below.

  • Force Majeure refers to any downtime minutes that are the result of events or conditions beyond Acquia’s reasonable control. Such events might include but are not limited to any acts of common enemy, the elements, earthquakes, floods, fires, epidemics, and inability to secure products or services from other persons or entities.

  • Incident means any set of circumstances resulting in a failure to meet the Edge Service Level.

  • Outage Period is equal to the number of downtime minutes resulting from an Unscheduled Service Outage.

  • Planned Downtime is downtime specified by the Customer or Acquia that is to be excluded from any calculation of an Outage Period. This would apply to any time when the Customer has requested Edge Service access suspended from their environment. This also covers outages caused by Acquia’s scheduled maintenance (typically 11pm to 7am at the datacenter location identified on Customer’s Order), provided Acquia notifies Customer 48 hours prior to the commencement of the maintenance work (there will be no more than two hours of scheduled maintenance downtime per calendar year).

  • Scheduled Availability is the total number of minutes in the month minus any Planned Downtime, and downtime caused by Force Majeure.

  • Unscheduled Service Outage are those interruptions to the Edge Service that have not been previously communicated to the Customer and that result in the Customer’s application being unavailable to its customers or users. Unscheduled Service Outages exclude downtime minutes resulting from Planned Downtime or downtime caused by Force Majeure.

6.2 Edge Service Credit Claims

Acquia provides this Edge SLA subject to the following terms.

In order to be eligible to submit a Claim with respect to any Incident, the Customer must first have notified Acquia Support Services of the Incident via Acquia’s support procedures as described in the Support Users Guide within three business days following the Incident.

To submit a Claim, Customer must contact Acquia Support Services and provide notice of its intention to submit a Claim. Customer must provide to Acquia all reasonable details regarding the Claim, including but not limited to, detailed descriptions of the Incident(s), the duration of the Incident, network traceroutes, the URL(s) affected, and any attempts made by Customer to resolve the Incident.

In order for Acquia to consider a Claim, Customer must submit the Claim, including sufficient evidence to support the Claim, by the end of the billing month following the billing month in which the Incident that is the subject of the Claim occurs.

Acquia will use all information reasonably available to it to validate Claims and make a good faith judgment on whether the Edge SLA and Edge Service Levels apply to the Claim.

6.3. Edge SLA Exclusions

This Edge SLA and any applicable Edge Service Levels do not apply to any performance or availability issues:

  1. due to factors outside Acquia reasonable control
  2. that resulted from Customer’s or third party hardware or software
  3. that resulted from actions or inactions of Customer or third parties
  4. caused by Customer’s use of the Edge Service after Acquia advised Customer to modify its use of the Edge Service, if Customer did not modify its use as advised
  5. during beta and trial Services (as determined by Acquia)
  6. attributable to the acts or omissions of Customer or Customer’s employees, agents, contractors, or vendors, or anyone gaining access to Acquia’s Service by means of Customer’s Authorized Users’ accounts or equipment

6.4. Edge Service Credits

Edge Service Credits are Customer’s sole and exclusive remedy for any violation of this Edge SLA. The total amount of Edge Service Credits awarded in any yearly billing period shall not, under any circumstance, exceed six (6) months of a Customer’s cumulative total monthly service fees. Edge Service Credits for this Edge SLA will only be calculated against monthly recurring fees associated with the Edge Service.

6.5. Edge Service Credit Calculation

For any and each Outage Period during a monthly billing period Acquia will provide as an Edge Service Credit an amount calculated as follows:

Edge Service Credit = ((Outage Period minutes) * (Affected Customer Ratio)) / (Scheduled Availability minutes)

6.6. Methodology

Acquia is not responsible for comprehensive monitoring of Customer Content; this responsibility lies with Customer. Acquia will review data on a Customer’s reported Outage Periods as determined by any commercially reasonable independent measurement system used by the Customer. Acquia will use all information reasonably available to it in order to calculate the Affected Customer Ratio during an Outage Period, including analysis of Edge Service data immediately prior to the Outage Period to estimate the ratio of a Customer’s visitors that were affected during an Outage Period at one or more of Acquia’s data centers.


7. Support

The specific support services provided by Acquia are described in the Acquia Support User Guide.

All support for the Edge service is provided by Acquia Support. Customer should not contact any underlying providers directly for technical advisory or troubleshooting support.


8. GDPR Product Notice

GDPR Product notice for Edge products powered by Akamai.

GDPR Product notice for Edge products powered by Cloudflare.

Acquia Inc. reserves the right to change the Products and Services Guide based on prevailing market practices and the evolution of our products. Changes will not result in a degradation in the level of services provided during the period for which fees for such services have been paid.