Managed Fastly CDN
Back to home
On this page
Tier availability
This feature is available for Upsun Fixed Elite and Enterprise customers. Compare the Upsun Fixed tiers on our pricing page, or contact our Sales team for more information.
Instead of starting your own Fastly subscription and managing your CDN yourself, you can take advantage of a Fastly CDN provided by Upsun Fixed. For example, Dedicated projects include a managed Fastly CDN by default. These CDNs are exclusively set up and managed by Upsun Fixed.
To modify any settings for a managed Fastly CDN, open a support ticket. To add a managed Fastly CDN to your project, contact sales.
Note
Upsun Fixed does not write nor debug any custom VCL on Managed Fastly CDN services.
Monitor CDN metrics
You can access a summary of your monthly traffic usage under the “Traffic this month” section at the Project level inside Console. This will help you monitor your monthly bandwidth and requests consumption.
In this summary, you will find specific details about:
-
Origin Bandwidth: Data transferred from origin servers (in TB).
-
Origin Requests: Requests served by origin servers (in millions of requests).
-
CDN Bandwidth & CDN Requests: Shown if you have Fastly CDN enabled.
This data is updated daily and will reflect your traffic usage throughout the billing period.
Set up traffic alerts
You can also set up consumption alerts for your resource usage. Click the Alert button in the “Traffic this month” block within Console to configure usage thresholds. For more information, head to the Pricing docs page.
Domain control validation 
When you request for a new domain to be added to your Fastly service,
Upsun Fixed support provides you with a CNAME record for domain control validation.
To add this CNAME record to your domain settings,
see how to configure your DNS provider.
Transport Layer Security (TLS) certificates
By default, Enterprise and Elite plans include two TLS certificates, an apex and a wildcard one. This allows for encryption of all traffic between your users and your app.
If you use a Fastly CDN provided by Upsun Fixed, you can provide your own third-party TLS certificates for an additional fee.
To do so, if you don’t have one, set up a mount that isn’t accessible to the web. Use an environment with access limited to Upsun Fixed support and trusted users. Transfer each certificate, its unencrypted private key, and the intermediate certificate to the mount. To notify Upsun Fixed that a certificate is to be added to your CDN configuration, open a support ticket.
If you need an Extended Validation TLS certificate, you can get it from any TLS provider. To add it to your CDN configuration, open a support ticket.
Note that when you add your own third-party TLS certificates, you are responsible for renewing them in due time. Failure to do so may result in outages and compromised security for your site.
Retrieve your Fastly API token
The API token for your managed Fastly CDN is stored in the FASTLY_API_TOKEN or the FASTLY_KEY environment variables.
This variable is usually set in the /master/settings/variables folder of your project,
and you can access it from a shell
or directly in your app.
Note
Dedicated (gen2) projects may not have the FASTLY_* environment variable(s) set.
In this case, the Fastly API token is stored in a text file called fastly_tokens.txt on the server,
typically located at /mnt/shared/fastly_tokens.txt.
Dynamic ACL and rate limiting
For details about updating an access control list (ACL) and applying rate limiting, check out the Working with Upsun Fixed rate-limiting implementation article in the Upsun Community.