# Proxy Property Configuration Prerequisites To successfully implement the Proxy Property, please ensure you have: 1. A **CNAME record**, which can be registered by your DNS management platform, such as Akamai Edge DNS. 2. A valid **Certificate** for the CNAME. 3. Completed the [Monitoring Configuration](https://docs.netacea.com/netacea-plugin-information/akamai/monitoring-configuration). ## CNAME and Certificate The CNAME record must be pointing to the edgekey.net domain of the [proxy property](#proxy-property-configuration) that is described below. For example, for the proxy property hostname "mitigations.examplehost.com", the CNAME record value should be "mitigations.examplehost.com.edgekey.net". The CNAME DNS record can be created from within Akamai Edge DNS or from any other DNS management platform. For the CNAME to be valid, a certificate must be assigned to it. This can be a new or a re-used certificate from your existing DNS records. ## Proxy Property Configuration To avoid any conflict with any existing standard rules within your Akamai property, a new proxy property must be created. The sole purpose of this property is to act as a proxy between the Akamai EdgeWorker and the Netacea Protector API. {% hint style="info" %} The hostname of the property can be anything, but to increase security measures, it should not relate to Netacea. For example, "mitigations.examplehost.com". {% endhint %} To create such property, click on **Properties**, under the **CDN** section of the menu. Then click on **+New Property**
While editing the property version, add the domain created earlier as the Property Hostname.
Under the **Property Configuration Settings**, add/edit the **Default Rule** with the following: ### **Default Rule** {% hint style="info" %} Default behaviors are applied to all requests for the property hostname(s). {% endhint %} The Default Rule template contains all the necessary and recommended behaviors. Rules are evaluated from top to bottom and the last matching rule wins.
Behaviors

Origin SSL Certificate Verification

Ports

3d2d365e9533444f96c27058ee7849e1-1b922c6863224f2e9565a9a2a5a7d997
9a0fff7e8d404e05bb905cb3b7b116a3-1b922c6863224f2e9565a9a2a5a7d997
Within the default rule add a new Behavior of type **Content Provider Code**.\ \ The Content Provider Code hostname selected from the drop down should be the proxy property hostname. If that is not available, you can create a new CP code for that hostname.
Content Provider Code
Content Provider Code000000 - ExampleCPCode1
### CAPTCHA Assets Rule Under the **Property Configuration Settings**, add a new blank rule against the proxy property called "CAPTCHA Assets Rule". Include the following criteria and behaviors within the rule: | Criteria | | ---------------- | | Match All | | **If** | | Path | | matches one of | | `/Mitigations/*` |
Behaviors

Origin SSL Certificate Verification

Ports

{% hint style="danger" %} Ensure that the proxy property only contains the **Default** and the **CAPTCHA Assets** Rules. Any other Rules (including automatically created ones) must be deleted before saving the proxy property configuration. {% endhint %}

Proxy Property Rules

### Activate the Property Once all the Rules described above have been created, click **Save** and use the **Activate** tab to activate (deploy) your changes to the property's configuration. {% hint style="info" %} A single Proxy Property can be used by multiple Properties. For example it can be used by a Staging and multiple Production Properties. {% endhint %} ### Finishing Up {% hint style="success" %} You have now completed the configuration for the proxy property of the Proxy Property. {% endhint %}