OpenResty Edge Products’ Feature Comparison

FeatureEntry EditionStandard EditionPro Edition
Dynamic HTTP/HTTPS reverse proxy and dynamic load balancing strategies
Custom request rate limiting, dispatching, and SSL handshake rate limiting
Custom SSL certificate uploading and management
Automatic issuing, updating, and managing SSL certificates based on the free Let's Encrypt services, including support for multiple domains and wildcard domains, wildcard domain support requires at least the Std version or above)
Dynamically configurable Web Application Firewall (WAF),supporting turning on and off specific WAF rule modules on the host level, or tuning on or off dynamically on the request level.
Real-time gateway configuration distribution system (supporting global-scale networks)
Gateway-cluster level distributed web caching and custom caching key and caching rule configurations
Dynamic and custom load balancing among upstream servers (or origin sites)
Target response time for technical support for the initial contact (SLA), optional24 hours8 hours4 hours
Custom X-Real-IP request header configurations
Custom response header rewriting, removal, and insertion rule configurations
Custom request header rewriting, removal, and insertion rule configurations
Custom request URI and URL argument rewriting, removal, and insertion rule configurations
Real-time whole-network response status code real-time statistics
Real-time whole-network error log statistics
Login account management in the central controller system (the OpenResty Admin web application) as well as fine-grained access control on the application level (one or more domains)
Managing all the gateway nodes in the central controller system (the OpenResty Admin web application) like dynamically adding and removing nodes
Built-in version control support for the configurations in the central controller system (or the OpenResty Admin app), with support for rollback and reverting
Custom per-domain favicon image uploading and management
Configuring custom HTML error pages for specified HTTML response status codes
Support for REST API and PHP/Python Client SDK, capable of automating almost all of the configurations in the central controller system (i.e., the OpenResty Admin app)
WAF real-time hit log reporting and summary in the central controller system
Basic real-time statistics in the central controller (or the OpenResty Admin app): CPU usage, disk IO, network IO, memory usage, and etc
Proactive health-check for upstream (backend) nodes (or origin sites)
English and Chinese language support in the central controller system (or the OpenResty Admin app)
IPIP IP Geo data base auto update support (the IPIP database requires separate purchases)
Real-time display of the current configuration synchronization status in all the gateway nodes
Periodic security updates and upgrades for new optimizations, new features of the full product
Real-time conditional or unconditional cache purge (Exact URL purge, URL prefix purge, or arbitrarily complex cache purge)
Custom request rewrite and WAF defense rules by our own Edge domain-specific rule-based language
Defining custom regression test suite by the TestML domain-specific language, and run it on the central controller system (or the OpenResty Admin application)
Geo-sensitive and ISP-sensitive DNS server support reusing the same gateway networks (or just a selective part of them), supporting automatic and custom dispatching strategies and rules.
Proactive health check for the gateway nodes and automatic adjustments in the DNS configurations accordingly
Custom WAF whitelist with flexible conditions
Dynamically configuring custom multi-tiered networks and custom traffic routing rules inside the gateway networks
Gateway configuration synchronization cross custom partitions (or regions) of the same gateway network, also supporting A/B test releases in dedicated parts of the gateway network
OpenResty Trace (online flame graph sampling and etc)
Dynamic and custom metric creation and management via the Edge language
Dynamic load balancing among different Linux Network Namespaces
TLS applications' dynamic reverse proxying
TCP applications' dynamic reverse proxying