Zeq Edge · Quickstart

Five-minute path from zero to a hostname under edge protection.

0. Prereqs

A state machine you own (any owned-domain origin will spawn one for ~ 50 ZEQ).
An admin-scope api key (zsm_…) on that machine.
A hostname you control DNS for.

1. Register the site

UI:

Open  /apps/zeq-edge/
Paste zsm_… in the toolbar input
Click  "+ Add site"

Or CLI / curl:

curl -X POST https://zeq.dev.local:3099/api/cf/sites \
  -H 'X-Zeq-SM-Key: zsm_…' \
  -H 'Content-Type: application/json' \
  -d '{"hostname":"www.example.com","origin_url":"https://origin.example.com","plan_tier":"free"}'

Response includes the CNAME target:

{
  "dns_instructions": {
    "cname_target": "deadbeefcafef00d.zeqedge.zeq.dev"
  }
}

2. Set the CNAME

At your DNS provider (Route 53, NS1, your registrar, …) add:

www.example.com   CNAME   deadbeefcafef00d.zeqedge.zeq.dev

Wait 1-5 minutes for propagation.

3. (Optional) Add a deny rule

curl -X POST https://zeq.dev.local:3099/api/cf/sites/<id>/rules \
  -H 'X-Zeq-SM-Key: zsm_…' \
  -H 'Content-Type: application/json' \
  -d '{"kind":"page_rule","match_pattern":"/admin","action_json":{"deny":true},"priority":10}'

4. Watch the dashboard

/apps/zeq-edge/site.html?id=<id>

You'll see the first 60-Zeqond window (≈ 46.6 s) appear once a request is served.

5. Purge cache when needed

curl -X POST https://zeq.dev.local:3099/api/cf/sites/<id>/purge \
  -H 'X-Zeq-SM-Key: zsm_…' \
  -H 'Content-Type: application/json' \
  -d '{"paths":["/index.html"]}'

Or {"all": true} for a full purge.

That's it. Every request from now on is rule-evaluated, WAF-scored, cache-checked, origin-pulled (or served from cache), and audit-rowed to your machine's entangled state — one row per 60-Zeqond window for ordinary traffic, one row per incident for CF-WAF-BLOCK / CF-RULE-DENY / CF-ORIGIN-FAIL.

0. Prereqs​

1. Register the site​

2. Set the CNAME​

3. (Optional) Add a deny rule​

4. Watch the dashboard​

5. Purge cache when needed​