How to Configure a CDN for Your Website on Debian 12 Bookworm

Learn how to configure a Content Delivery Network (CDN) for your website on Debian 12 Bookworm.

by İbrahim Korucuoğlu ( @siberoloji) | Sunday, April 06, 2025

Categories:

Linux

5 minute read

In today’s web ecosystem, user experience and performance are critical. Whether you are hosting a personal blog, a portfolio, or a high-traffic eCommerce platform, speeding up your website is vital. One proven method to enhance web performance and reliability is by using a Content Delivery Network (CDN).

This guide will walk you through how to configure a CDN for your website on a Debian 12 Bookworm system, focusing on both third-party CDN services and self-hosted options. We’ll cover the basics, DNS configuration, integration with web servers like Nginx or Apache, and tips for security and caching.

What is a CDN?

A Content Delivery Network (CDN) is a geographically distributed group of servers that cache and deliver content—such as HTML pages, images, stylesheets, and JavaScript—based on a user’s geographic location. The goal is to reduce latency and bandwidth consumption, improve loading speed, and enhance the overall experience for visitors.

Instead of every request being served from your origin server (e.g., located in New York), a CDN can respond to user requests from a nearby edge location (e.g., Los Angeles, Tokyo, or Paris), reducing the time and hops required for content delivery.

Benefits of Using a CDN

Faster load times globally
Reduced bandwidth usage
Improved availability and redundancy
DDoS mitigation and enhanced security
SEO benefits due to performance gains

Prerequisites

Before proceeding, ensure the following:

You have a Debian 12 Bookworm server with root or sudo access.
Your website is already configured and running with either Nginx or Apache.
You have access to your domain registrar/DNS provider.
You have an account with a CDN provider (if using a third-party CDN like Cloudflare, Bunny.net, or KeyCDN).

Step 1: Choose a CDN Provider

You have two options:

Option 1: Third-Party CDN Providers

These services offer plug-and-play CDN integration:

Cloudflare (Free and Paid Tiers)
Bunny.net
KeyCDN
StackPath
Akamai

Option 2: Self-Hosted CDN Solutions

If you prefer to have full control, you can set up your own CDN using tools like:

Varnish Cache
Nginx with caching and multiple servers
Apache Traffic Server

This article focuses mainly on third-party CDN setup, specifically Cloudflare, as it is widely used and free to get started.

Step 2: Add Your Website to the CDN

Let’s walk through adding your website to Cloudflare. Steps are similar across other providers.

1. Create a Cloudflare Account

Visit https://www.cloudflare.com and sign up.
Add your domain name.
Cloudflare will scan your existing DNS records.

2. Review and Import DNS Records

Check if your A, AAAA, CNAME, MX, and TXT records are accurate.
Ensure your web server IP (A record) is correct.
Cloudflare will proxy your traffic (denoted by an orange cloud icon).
Toggle the proxy setting if you wish to bypass CDN for certain subdomains.

3. Update Your Nameservers

Cloudflare will provide nameservers (e.g., ns1.cloudflare.com, ns2.cloudflare.com).
Go to your domain registrar (e.g., Namecheap, GoDaddy) and replace the existing nameservers.
Wait for DNS propagation (can take 1–24 hours).

Step 3: Configure Your Web Server (Apache or Nginx)

A. Configuring Apache for CDN

Ensure the mod_remoteip module is enabled to log the correct client IPs:

sudo a2enmod remoteip

Edit your Apache config or virtual host file:

RemoteIPHeader CF-Connecting-IP

Restart Apache:

sudo systemctl restart apache2

B. Configuring Nginx for CDN

Cloudflare sends the real IP via the CF-Connecting-IP header. Add this to your Nginx configuration:

set_real_ip_from 103.21.244.0/22;
set_real_ip_from 103.22.200.0/22;
set_real_ip_from 103.31.4.0/22;
set_real_ip_from 104.16.0.0/13;
set_real_ip_from 104.24.0.0/14;
set_real_ip_from 108.162.192.0/18;
set_real_ip_from 131.0.72.0/22;
set_real_ip_from 141.101.64.0/18;
set_real_ip_from 162.158.0.0/15;
set_real_ip_from 172.64.0.0/13;
set_real_ip_from 173.245.48.0/20;
set_real_ip_from 188.114.96.0/20;
set_real_ip_from 190.93.240.0/20;
set_real_ip_from 197.234.240.0/22;
set_real_ip_from 198.41.128.0/17;
real_ip_header CF-Connecting-IP;

Restart Nginx:

sudo systemctl restart nginx

Note: The list of IPs can be found at Cloudflare IP ranges. Update regularly.

Step 4: Enable HTTPS with CDN

Most CDN providers offer free TLS/SSL certificates. For Cloudflare:

Go to the SSL/TLS tab in your dashboard.
Choose an encryption mode:
- Flexible: Encrypts between user and Cloudflare only.
- Full: Encrypts both sides; origin must have SSL.
- Full (Strict): Origin must have a valid certificate.
We recommend using Full (Strict) for security.

You can also generate a Cloudflare Origin CA certificate and install it on your server.

Step 5: Optimize CDN Settings

After your DNS is proxied through the CDN, you can start optimizing performance.

Key Features to Enable

Caching Static Content: Enable browser caching for images, CSS, and JS.
Auto Minify: Compress HTML, CSS, and JavaScript files.
Rocket Loader™ (Cloudflare): Speeds up JavaScript loading.
Image Optimization: Enable services like Cloudflare Polish or Bunny Optimizer.
Page Rules (Cloudflare): Customize behavior per URL, e.g., cache everything, bypass cache, etc.

Example Cloudflare page rule:

URL: yourdomain.com/images/*
Setting: Cache Level = Cache Everything

Step 6: Test Your Configuration

Use tools to validate the CDN is working:

https://www.webpagetest.org
https://gtmetrix.com
https://tools.pingdom.com
Check HTTP response headers to ensure content is served via CDN (cf-cache-status: HIT)
Use curl to inspect headers:

curl -I https://yourdomain.com

Step 7: Troubleshooting Tips

Propagation Delays: CDN may not work immediately. Wait for DNS to propagate.
Caching Conflicts: Clear CDN and browser cache when testing.
Origin Errors: Make sure your server responds to CDN requests correctly.
Mixed Content Warnings: Ensure all assets are loaded via HTTPS.
Rate Limiting / Firewall: Whitelist CDN IPs on your server if access is blocked.

Optional: Implementing a Self-Hosted CDN

If you want full control, deploy your own CDN using multiple VPS servers and Nginx.

Deploy edge nodes geographically (e.g., NYC, Frankfurt, Singapore).
Use rsync or CI/CD tools to sync static content.
Configure Nginx on each node to cache and serve assets.
Use GeoDNS or a load balancer to route traffic to the nearest node.

This setup is more complex and requires regular maintenance but is viable for organizations with specific compliance or performance needs.

Conclusion

Configuring a CDN for your website on Debian 12 Bookworm is a straightforward process that yields substantial benefits in terms of speed, security, and reliability. Using services like Cloudflare simplifies this integration significantly, especially for smaller teams or individuals.

Whether you choose a fully managed third-party CDN or build your own, the result is a more responsive and resilient web experience for your visitors around the globe. For mission-critical websites, using a CDN is not just an enhancement—it’s a necessity.

Feedback

Was this page helpful?

Glad to hear it! Please tell us how we can improve.

Sorry to hear that. Please tell us how we can improve.

< How to Install and Configure a VPN Server (OpenVPN) on Debian 12 Bookworm How to Install and Configure a Mail Client (Thunderbird) >