Amazon CloudFront is a content delivery network (CDN) offered by Amazon Web Services.
Amazon CloudFront is a content delivery network (CDN) offered by Amazon Web Services.
Questions tagged [amazon-cloudfront]
398 questions
2
votes
2 answers
How to whitelist Authorization header in CloudFront custom Origin Request Policy?
I have created the following CloudFront Origin Request Policy:
I need Authorization header (without Authorization header the AntiForgeryToken header is not forwarded) but I do not understand why CloudFront does not allow adding Authorization header…
Hooman Bahreini
- 518
- 6
- 17
2
votes
1 answer
AWS Cloud Front, how to request origin using correct url
I'm trying to cache a website that is on an EC2, it has an URL uncached.xyz.com, so i created an Cloud Front with the origin pointed to uncached.xyz.com and created a record xyz.com that points to the cloudfront distribution, named something like…
Ollegn
- 73
- 1
- 7
2
votes
0 answers
Why is CloudFront ApiGateway CloudFront-Viewer-Country reporting US as the country for eu-west-1 distribution and viewer in UK?
I have an AWS CloudFront distribution created using CDK (CloudFrontWebDistribution) fronting an ApiGateway, deployed in eu-west-1 (Dublin). I can see in the API logs that the CloudFront-Viewer-Country header is set to US, even though I am accessing…
John
- 263
- 1
- 2
- 11
2
votes
2 answers
Do the IPs assigned by CloudFront Dedicated IP stay the same forever?
If you use CloudFront and choose the dedicated IP approach to support clients without SNI, do the IP addresses stay the same forever? I understand that AWS must allocate 30-40 IPs around the world that are just assigned to your CDN, but can these IP…
tacos_tacos_tacos
- 3,250
- 18
- 63
- 100
2
votes
1 answer
Redirect apex domain to www with Route53 and CloudFront
I'm trying to setup redirect from the apex domain example.com to www.example.com with route53, cloudfront and s3.
I've seen many tutorials online and discussions here on the topic, but nothing has worked for me yet. And it's not clear exactly what…
Kaigo
- 123
- 4
2
votes
0 answers
Access denied for S3 bucket with redirect access via CloudFront
I have public S3 bucket exposed via CloudFront to S3 A record for www.mezinamiridici.cz.
https://www.mezinamiridici.cz/ - works
http://www.mezinamiridici.cz/ - redirects to https://www.mezinamiridici.cz/
Then I created another S3 bucket named…
Leos Literak
- 305
- 4
- 13
1
vote
1 answer
Roundabout traffic from AWS Cloudfront to backend EC2 server
I'm on 'basic support' plan with AWS, and cannot therefore ask the in-house technical experts there.
I was trying to set up cloudfront.
My backend is at AWS Hong Kong.
However, I noticed that traffic that is 'front-ended' by Cloudfront HK servers do…
Prashant D
- 13
- 2
1
vote
0 answers
AWS Cognito Hosted UI Bypasses WAF
I have an S3 hosted site behind a Cloudfront and WAF. I set up a Cognito hosted UI with a custom domain (auth.example.com where example.com is my site). Cognito generates a Cloudfront distribution that is aliased in Route 53 to my domain but…
elpa
- 11
- 1
1
vote
1 answer
WAF + cloud front block IP
I have successfully blocked an IP in waf which is configured to work with Cloud front
Is there a way to block IP address before it reaches cloudfront? It wouldn’t seem possible as I tried blocked in ACL which prevents access to my servers, but since…
Chris Muench
- 487
- 3
- 10
- 31
1
vote
1 answer
How to use AWS CloudFront for serving both Images and Website?
I have an e-commerce website, an ASP.NET website running on Windows/IIS. Currently I have all my product photos on the local server's File System but since the number of photos are growing I have decided to move the photos to S3 bucket on AWS.
To…
Hooman Bahreini
- 518
- 6
- 17
1
vote
2 answers
Custom subdomain on Route 53 pointing to cloudfront distribution and s3 static website not working
I'm trying to configure a custom domain name ("test.example.com") transferred to Route 53, pointing towards an S3 static website bucket ("test.example.com"), through the use of a cloudfront distribution ("1111.cloudfront.net") (for the record, I…
Josef
- 11
- 3
1
vote
0 answers
Client connects to Cloudfront via HTTP2, then connects to an Apache Server via HTTP1, can HTTP2 vulnerabilities be exploited in the HTTP1 connection?
We have an environment where customers connect to a Cloudfront distribution via HTTP2 and then from the Cloudfront distribution to an Apache web server via a HTTP1 connection.
[ client ] ---(https, http/2)--> [ cloudfront ] ---(http, http/1--> […
nicepalpal
- 11
- 3
1
vote
1 answer
CloudFront invalidation "madness"
When I push a new site, I update the Origin ID to point at a new version, per screenshot:
This in turn triggers the Status change from Deployed to In progress on the main CF Distributions console. My understanding is that this does NOT trigger…
Slawomir
- 177
- 1
- 8
1
vote
0 answers
Nginx Redirect to EC2 Instance
ORIGINAL
I had angular (version: 7) site which was deployed on S3 bucket, but for SEO purposes, recently I integrated Angular Universal.
Now I moved site/frontend from S3 bucket to EC2 instance. I am trying to deploy my angular universal…
Junaid
- 111
- 5
1
vote
0 answers
How to have cloudfront distribution listen on custom port for HTTPS?
I have setup a Cloudfront distribution on AWS with custom domain name to fetch firmware update file from S3. However, the existing devices that we have with customers make an HTTPS request to that same custom domain name on port 4433 instead of the…
sushrut619
- 123
- 2
- 4