EdgeNext
Documentation home

EdgeNext Documentation

Product guides, setup instructions, and technical references.

Security CDN

Origin SNI

When the origin server's IP hosts multiple domains and is accessed over HTTPS, it is essential to specify the exact domain name to be used in the SNI (Server Name Indication) during the TLS handshake.

How Origin SNI Works

  1. When a Security CDN edge node connects to the origin server over HTTPS, it includes the specified domain in the SNI field of the TLS handshake.
  2. The origin server identifies the domain from the SNI and returns the corresponding SSL certificate.
  3. The Security CDN edge node validates the certificate and establishes a secure connection with the origin server.

Configuration Guide

  1. Log in to the Security CDN Console.

  2. In the left navigation menu, go to Domain Management, then click Domain List.

    回源HOST配置1

  3. Locate the domain to configure, and click Origin in the action column to enter the origin configuration page.

  4. Find the Origin SNI field.

    1. The default setting is OFF.
    2. When using a custom domain, enter the exact domain you want to use for HTTPS origin fetch.
      Note: The value for Origin SNI must be an exact domain name (e.g., www.example.com). Wildcard domains are not supported.

回源SNI1

Need help? Contact our support team at support@edgenext.com.

Back to documentation home