Alibaba Cloud CDN:Limits

According to the Alibaba Cloud International Website Product Terms of Service, if you expect traffic spikes on CDN-accelerated services, you must contact your account manager or contact us by other means described in Contact us to apply for burst bandwidth at least three business days in advance. For major events including but not limited to the Spring Festival Gala and Double 11 Global Shopping Festival, you must apply for burst bandwidth at least one month in advance. If the application is successful, the availability of your services is guaranteed when the burst bandwidth is within the level agreed upon by both parties. If you do not apply for burst bandwidth or the application is unsuccessful, Alibaba Cloud reserves the right to take measures such as bandwidth throttling to ensure service-level stability for other Alibaba Cloud customers. Bandwidth throttling is not necessarily triggered. Alibaba Cloud determines whether to enable bandwidth throttling based on service conditions and the level of the burst bandwidth. Alibaba Cloud is not responsible for the reduced availability caused by the measures.

• Domain name type: The domain name that you want to accelerate can be a specific domain name such as example.aliyundoc.com or a wildcard domain name such as *.aliyundoc.com.
• Domain name format:
  • The domain name must be 1 to 67 characters in length.
  • The domain name can contain lowercase letters, digits, and hyphens (-). Example: example.com.
  • The domain name cannot contain Chinese characters, uppercase letters, or characters other than hyphens (-). The domain name cannot be a hyphen (-). A hyphen (-) in a domain name cannot be followed by another hyphen (-). The domain name cannot start or end with a hyphen (-). If the domain name contains Chinese characters such as 阿里云.网址, you must perform ICP filing for the Chinese domain name. Then, use the Punycode tool to convert the domain name into English characters such as xn--fiq****.xn--eq****. Specify the converted domain name as the domain name to be accelerated.
• Requirements for wildcard domain names:
  • Alibaba Cloud CDN supports wildcard domain names. For information about the limits on wildcard domain names, see Does Alibaba Cloud CDN support wildcard domain names?
  • The wildcard domain name that you specify and the domain names that match the wildcard domain name must belong to the same Alibaba Cloud account. Otherwise, an error message appears when you add domain names.
  • If a wildcard domain name is not added to an Alibaba Cloud account, you are allowed to add the subdomains of the wildcard domain name to multiple Alibaba Cloud accounts.
  • Each wildcard domain name can match up to 500 specific domain names. If more than 500 specific domain names match a wildcard domain name, only the first 500 specific domain names can acquire the settings of the wildcard domain name. Other domain names cannot be accelerated by Alibaba Cloud CDN.
    Note The first 500 specific domain names that match the wildcard domain name can be accelerated by Alibaba Cloud CDN.
• You cannot add domain names that have been added to other Alibaba Cloud services.

  If the system prompts that the domain name is added to other Alibaba Cloud services such as ApsaraVideo VOD and DCDN, you can transfer the domain name to Alibaba Cloud CDN. For more information, see Domain name transfer.

• Each Alibaba Cloud account can add up to 50 domain names to Alibaba Cloud CDN.
  Note However, if the average daily peak bandwidth of your domain names exceeds 50 Mbit/s, you can request to add more domain names by following the method described in Quota management. Make sure that the increase of domain names does not cause business risks.
• The content that is delivered from the domain name must be legal and compliant with the Terms of Service for Alibaba Cloud CDN. For more information about the limits, see Limits.
• ICP filing: If you set the acceleration region of a domain name to Global or Chinese Mainland Only, you must apply for an ICP number for the domain name. We recommend that you use Alibaba Cloud ICP Filing System to apply for ICP numbers. For more information, see Prepare and check the instance and access information.
• Domain name reclaiming: If your domain name is disabled for 120 days, Alibaba Cloud CDN deletes the configuration records that are related to the domain name. This rule also applies to domain names that fail ownership verification. If you want to continue using the domain name, you must go to the Alibaba Cloud CDN console to add the domain name again.
• Domain name disabling: For more information, see Rules for disabling accelerated domain names.
• Sandbox:If an accelerated domain name is under attack, such as DDoS attacks or HTTP flood attacks, or faces significant increases in bandwidth or QPS due to traffic spikes that have not been reported to Alibaba Cloud, Alibaba Cloud CDN has the right to determine whether to add the attacked domain name to a sandbox based on factors such as the service status of the domain name and the impact of the attack. This ensures that the acceleration services of other users can work as expected. For more information, see Introduction to sandboxes. If the attack is severe, other accelerated domain names in the same account are also added to the sandbox, and the addition of new domain names to the account is restricted.

• Address length: The address of an origin server cannot exceed 67 characters in length.
• Maximum number of origin servers: You can set at most 20 origin server addresses for each accelerated domain name.
• OSS Domain
  • If your origin server is an Object Storage Service (OSS) bucket, you can use the public domain name of the OSS bucket such as ***.oss-cn-hangzhou.aliyuncs.com. CDN does not support internal domain names of OSS buckets.
  • You can obtain the public domain name of an OSS bucket in the OSS console. You can also select the endpoint of an OSS bucket that belongs to the current Alibaba Cloud account from the Domain Name drop-down list.
  Note Preferential pricing for data transfer between Alibaba Cloud CDN and OSS:

  • To enjoy preferential pricing on traffic between Alibaba Cloud CDN and OSS, you must set the origin server type to OSS Domain in the Alibaba Cloud CDN console.
  • If you set the origin server type to Site Domain in the Alibaba Cloud CDN console, OSS identifies network traffic sent from Alibaba Cloud CDN as outbound data transfer over the Internet. In this case, normal charges apply.

  For more information, see Billing of OSS content acceleration.

• IP address: You can configure one or more IP addresses for an origin server. Internal IP addresses are not supported. IPv4 addresses and IPv6 addresses are supported. At least one of the IP addresses must be an IPv4 address. If you use a public IP address of an Alibaba Cloud Elastic Compute Service (ECS) instance as the address of the origin server, the IP address is exempt from manual review.
• Site Domain: Enter the domain names of one or more origin servers.
  Note

  • The origin domain name must be different from the accelerated domain name. Otherwise, a DNS resolution loop occurs, and requests cannot be redirected to the origin server.
  • The format of the origin domain name:
    • The domain name must be 1 to 67 characters in length,
    • and can contain lowercase letters, digits, and hyphens (-). Example: example.com.
    • The domain name cannot contain Chinese characters, uppercase letters, or characters other than hyphens (-). The domain name cannot be a hyphen (-). A hyphen (-) in a domain name cannot be followed by another hyphen (-). The domain name cannot start or end with a hyphen (-). If the domain name contains Chinese characters such as 阿里云.网址, you must perform ICP filing for the Chinese domain name. Then, use the Punycode tool to convert the domain name to its ASCII equivalent, such as xn--fiq****.xn--eq****. Specify the converted domain name as the domain name to be accelerated.
  • You cannot add the IP address of an Alibaba Cloud Application Load Balancer (ALB) instance, for example, example.hangzhou.alb.aliyuncs.com, as the IP address of an origin server. However, you can configure a CNAME record for an ALB instance to resolve a service domain name, for example, origin.example.com, to the address of an ALB instance. For more information, see Configure a CNAME record. Then, set the service domain name to domain name of the origin server that is accelerated by Alibaba Cloud CDN.
• Function Compute Domain: Enter a Function Compute domain name that belongs to the current Alibaba Cloud account. You must set the Region and Domain Name parameters for the Function Compute domain name. For more information, see Configure a custom domain name.

• Accelerated domain name

  Each Alibaba Cloud account can add at most 50 domain names to Alibaba Cloud CDN. If the average daily peak bandwidth value exceeds 50 Mbit/s and your workloads are under protection, you can Quota management to add more domain names to Alibaba Cloud CDN.

• Cache refresh
  • URL refresh: 10,000 URLs per day for each Alibaba Cloud account.
  • Directory refresh: 100 directories per day for each Alibaba Cloud account.

  If your daily peak bandwidth exceeds 200 Mbit/s, you can Quota management to request a quota increase. Alibaba Cloud determines whether to approve your application based on your business requirements.

• File prefetch

  You can prefetch files only by using URLs. Each Alibaba Cloud account can submit a maximum of 1,000 URLs per day.

  If your daily peak bandwidth exceeds 200 Mbit/s, you can Quota management to request a quota increase. Alibaba Cloud determines whether to approve your application based on your business requirements.

Alibaba Cloud reviews the content served on all accelerated domain names. Domain names that cannot be accelerated by Alibaba Cloud CDN include but are not limited to:

• Websites whose content is inaccessible or does not provide valid information
• Private game servers
• Websites that provide multiplayer role-playing games and card games
• Websites that provide downloads of pirated content, including pirated software, books, videos, and comics
• Websites that run peer-to-peer (P2P) lending
• Unofficial lottery websites
• Websites of unlicensed hospitals and pharmaceuticals
• Websites that serve content pertaining to pornography, drugs, and gambling

• An HTTP request header cannot exceed 300 bytes.
• Timeout period

  By default, the timeout period for back-to-origin requests that are transmitted over TCP is 10 seconds. The timeout period for back-to-origin requests that are transmitted over HTTP is 30 seconds.

• Response header

  If an origin server does not respond to Content-Type, Alibaba Cloud CDN automatically adds Content-Type:application/octet-stream.

• Automatic conversion from HEAD to GET for back-to-origin requests
  By default, HEAD requests are sent to CDN POPs before the requests are redirected to origin servers. In this case, HEAD requests are converted to GET requests. If you do not want to convert HEAD requests to GET requests, you can navigate to the Custom Request Header tab in the Alibaba Cloud CDN console, and configure the following header. For more information, see Configure custom request headers (old).

  • Custom parameter: Ali-Swift-Fwd-Head
  • Value: on

• File cache
  • Responses whose Cache-Control directives do not allow caching: Alibaba Cloud CDN closes the connection after the amount of data transmitted from the origin server reaches 100 MB.
  • Responses whose Cache-Control directives allow caching: Alibaba Cloud CDN caches files up to 500 GB in size.
• File upload

  You can upload files to origin servers by using Alibaba Cloud CDN. Each file can be up to 300 MB in size.

HTTP/1.1: For the large_client_header_buffers directive, number is set to 4 and size is set to 64 KB. In this case, the length of an individual HTTP request header or an individual URL cannot exceed 64 KB. Otherwise, the HTTP 414 status code is returned. The total length of all HTTP request headers and URLs cannot exceed 256 KB. Otherwise, the HTTP 400 status code is returned.

ErrorCode:Throttling
ErrorMessage:Request was denied due to flow control.