Release Notes:  Dynamic Site Accelerator

New Features:

s-maxage Support. The s-maxage directive is now available to all DSA customers as part of the Caching behavior in Property Manager. S-maxage is a cache-control directive defined by the Internet Engineering Task Force’s (IETF) that makes it easier to configure caching across shared caches in a single setting.  For organizations that use multiple CDNs, this new capability significantly simplifies cache management. 

This is an opt in feature that enables you to define how long content should be cached starting from the time content is requested by configuring Time To Live (TTL) once across Akamai and any other CDNs and intermediary caches. 

The Caching behavior has a new option called Enhanced RFC support, which allows you to honor the s-maxage directive, and other RFC-supported directives, in Cache-Control response headers from the origin.

GCP Cloud Interconnects Beta

New features:

• Cloud Interconnects. A new Property Manager behavior that lets you maximize egress discounts for Google Cloud origins. It’s available through the beta channel for Ion Standard, Ion Premier, and DSA.

• New report (Cloud Interconnects) under Traffic reports. It lets you check value confirmation for the utilization of Cloud Interconnects. A new report isn’t yet universally available in the beta phase. Contact dl-cumulus-relations@akamai.com with the following information to set it up:

  • Property Manager account/property name
  • List of CP codes that have Cloud Interconnect enabled
  • List of Google origin server domains (or IP addresses) that have Cloud Interconnect enabled

• If the rule format for a property is set prior to 2020–11–02, update it to the latest version to access Cloud Interconnects. See Freeze a rule tree’s feature set for more information.

GCP Cloud Interconnects Beta

New features:

• Cloud Interconnects. A new Property Manager behavior that lets you maximize egress discounts for Google Cloud origins. It’s available through the beta channel for Ion Standard, Ion Premier, and DSA.

• New report (Cloud Interconnects) under Traffic reports. It lets you check value confirmation for the utilization of Cloud Interconnects. A new report isn’t yet universally available in the beta phase. Contact dl-cumulus-relations@akamai.com with the following information to set it up:

  • Property Manager account/property name 
  • List of CP codes that have Cloud Interconnect enabled
  • List of Google origin server domains (or IP addresses) that have Cloud Interconnect enabled

• If the rule format for a property is set prior to 2020–11–02, update it to the latest version to access Cloud Interconnects. See Freeze a rule tree’s feature set for more information.

Mac OS 11 (Big Sur) Support for ETP Client

Apple has announced the general availability of macOS Big Sur (version 11.0) across its platforms starting November 12, 2020.

Akamai has been working closely in the Apple Developer Network to validate the ETP Client with various Apple Developer builds. As a result, the ETP Client 3.2.1 will install in macOS Big Sur-based environments. However, full qualification is only possible once the production release of macOS Big Sur is made available.

Following Apple’s announcement today, Akamai will undertake a final round of testing on macOS Big Sur to ensure that ETP Client 3.2.1 is fully qualified. Once the testing is complete, Akamai will update appropriate Client release notes to reflect this.

ETP Clients below 3.2.1 will not support Big Sur. Customers using ETP Client who wish to run macOS Big Sur must upgrade to corresponding supported Client versions when they have been fully qualified.

See macOS Big Sur for more information.

Mac OS 11 (Big Sur) Support for EAA Client

Apple has announced the general availability of macOS Big Sur (version 11.0) across its platforms starting November 12, 2020.

Akamai has been working closely in the Apple Developer Network to validate the EAA Client with various Apple Developer builds. As a result, the EAA Client 2.1.2 will install in macOS Big Sur-based environments. However, full qualification is only possible once the production release of macOS Big Sur is made available.

Following Apple’s announcement today, Akamai will undertake a final round of testing on macOS Big Sur to ensure that EAA Client 2.1.2 is fully qualified. Once the testing is complete, Akamai will update appropriate Client release notes to reflect this.

EAA Client versions below 2.1.2 will not support Big Sur. Customers using EAA Client who wish to run macOS Big Sur must upgrade to corresponding supported Client versions when they have been fully qualified.

See macOS Big Sur for more information.

Enterprise Threat Protector (ETP) now includes these features and enhancements:

Custom Headers. In a policy, you can now configure custom headers to control access to software as a service (SaaS) applications. You can use this feature to require that users access only your organization’s account of the application. To use this feature, your organization must be licensed for ETP Advanced Threat and configure ETP Proxy as a full web proxy. For more information, see the online help.

Block Unscannable Files. You can enable the Block Unscannable Files option in a policy to block files that cannot be scanned by ETP Proxy as part of inline payload analysis. These files include encrypted or password protected files. If this option is disabled, these files are not scanned by ETP Proxy.

Custom List Updates. Custom lists now include these changes:

• If the block action is assigned to a custom list, you can select the users and groups that are exceptions to the block action. This means that selected users and groups can access a blocked website from the list after they successfully authenticate. To select users and groups for the exception, the policy must be enabled for authentication and have an associated identity provider.
• After you create a custom list, you can no longer modify the category that’s assigned to the list.

New Name for ETP Client Setting in Policy. The “Enable ETP Client as Proxy” setting is now called “Overwrite Device Proxy Settings.”

Identity Provider Deployment. In the new Enterprise Center user interface, you can now deploy an identity provider (IdP) within the IdP configuration. A new button now appears beside the deployment status when the IdP is ready for deployment. This button also appears if there is a failure that requires you to redeploy the IdP.

New feature:

• Reports for Enhanced Proxy Detection (EPD) with GeoGuard. The Media Delivery Reports component in Akamai Control Center now offers the Proxy Protection tab in Historical reports. Use it to monitor how often EPD was applied to requests that were routed through a proxy. We’ve worked with our partner, GeoGuard to establish several “categories” of proxy for this detection (“Anonymous VPN,” “TOR Exit Nodes,” etc.). The reports show you how often a selected action (allow, deny, or redirect) was applied, either for all proxy requests or per individual, GeoGuard proxy category. The reports also show proxy-related request data per individual CP code, so you can review results data per individual property configuration. You can also filter data based on traffic specifics, including secure delivery, non-secure delivery, live content, video on demand content, HLS, and DASH formats. See the Media Delivery Reports User Guide for more details.

New feature:

• Reports for Enhanced Proxy Detection (EPD) with GeoGuard. The Media Delivery Reports component in Akamai Control Center now offers the Proxy Protection tab in Historical reports. Use it to monitor how often EPD was applied to requests that were routed through a proxy. We’ve worked with our partner, GeoGuard to establish several “categories” of proxy for this detection (“Anonymous VPN,” “TOR Exit Nodes,” etc.). The reports show you how often a selected action (allow, deny, or redirect) was applied, either for all proxy requests or per individual, GeoGuard proxy category. The reports also show proxy-related request data per individual CP code, so you can review results data per individual property configuration. You can also filter data based on traffic specifics, including secure delivery, non-secure delivery, live content, video on demand content, HLS, and DASH formats. See the Media Delivery Reports User Guide for more details.

New feature:

• Reports for Enhanced Proxy Detection (EPD) with GeoGuard. The Media Delivery Reports component in Akamai Control Center now offers the Proxy Protection tab in Historical reports. Use it to monitor how often EPD was applied to requests that were routed through a proxy. We’ve worked with our partner, GeoGuard to establish several “categories” of proxy for this detection (“Anonymous VPN,” “TOR Exit Nodes,” etc.). The reports show you how often a selected action (allow, deny, or redirect) was applied, either for all proxy requests or per individual, GeoGuard proxy category. The reports also show proxy-related request data per individual CP code, so you can review results data per individual property configuration. You can also filter data based on traffic specifics, including secure delivery, non-secure delivery, live content, video on demand content, HLS, and DASH formats. See the Media Delivery Reports User Guide for more details.

New features

• Shared Policy for Edge Redirector. With this new type of policy the configuration and activation process is now much simpler, which is particularly convenient in case the same policy is used in multiple properties.
• Cloudlets API v3 with Shared Policy support. This API is significantly faster than v2 and is designed to better handle asynchronous communication.

Enhancements

• Improved UI responsiveness when activating API Prioritization, Application Load Balancer, Phased Release, Request Control or Visitor Prioritization cloudlets policies.
• Added an optional “async” query parameter to cloudlets policy activation API v2. Use this flag when activating API Prioritization, Application Load Balancer, Phased Release, Request Control or Visitor Prioritization policy to significantly reduce API response time and let the activation continue in the background. Highly recommended for activations on multiple properties.