Cloudflare is not returning a cache hit on static images and I can’t figure out why.
Origin server headers via curl:
< HTTP/2 200
< cache-control: max-age=86400, public
< content-type: image/png
< last-modified: Fri, 28 Oct 2022 16:44:36 GMT
< accept-ranges: bytes
< etag: "897a4d90ecead81:0"
< server: Microsoft-IIS/10.0
< x-powered-by: ASP.NET
< access-control-allow-origin: REDACTED
< x-frame-options: SAMEORIGIN
< x-content-type-options: nosniff
< x-xss-protection: 1; mode=block
< strict-transport-security: max-age=31536000; includeSubDomains
< referrer-policy: same-origin
< feature-policy: geolocation 'self'
< content-security-policy-report-only: default-src https: data: 'unsafe-eval' 'unsafe-inline'; script-src-elem 'unsafe-eval' 'unsafe-inline' REDACTED; report-uri /csp-violation-report-endpoint/
< date: Mon, 06 Mar 2023 22:36:57 GMT
< content-length: 12409
Cloudflare returns:
< HTTP/2 200
< date: Mon, 06 Mar 2023 22:37:22 GMT
< content-type: image/png
< content-length: 12409
< cache-control: public, max-age=86400
< last-modified: Fri, 28 Oct 2022 16:44:36 GMT
< etag: "897a4d90ecead81:0"
< x-powered-by: ASP.NET
< access-control-allow-origin: REDACTED
< x-frame-options: SAMEORIGIN
< x-content-type-options: nosniff
< x-xss-protection: 1; mode=block
< strict-transport-security: max-age=31536000; includeSubDomains
< referrer-policy: same-origin
< feature-policy: geolocation 'self'
< content-security-policy-report-only: default-src https: data: 'unsafe-eval' 'unsafe-inline'; script-src-elem 'unsafe-eval' 'unsafe-inline' REDACTED; report-uri /csp-violation-report-endpoint/
< cf-cache-status: MISS
< expires: Tue, 07 Mar 2023 22:37:22 GMT
< set-cookie: __cflb=04dToWzgkUHetG66Dk435VsWQgRv21ALC3fCNBx3tw; SameSite=Lax; path=/; expires=Mon, 13-Mar-23 22:37:22 GMT; HttpOnly
< server: cloudflare
< cf-ray: 7a3e15377f741986-EWR
The CF cache setting is standard, 4 hour TTL, and I’ve also tried page rules targeting the path with cache everything set.
What am I missing?
