Vercel WAF
Learn how to secure your website with the Vercel Web Application Firewall (WAF)Vercel WAF is available on all plans
Those with the member, viewer, developer and administrator roles can access this feature
The Vercel WAF, part of the Firewall, provides security controls to monitor and control the internet traffic to your site through logging, blocking and challenging. When you apply a configuration change to the firewall, it takes effect globally within 300ms and can be instantly rolled back to prior configurations.
You can control the internet traffic to your website in the following ways:
- IP blocking: Learn how to configure IP blocking
- Custom rules: Learn how to configure custom rules for your project
- Managed rulesets: Learn how to enable managed rulesets for your project (Enterprise plan)
You can quickly revert to a previous version of your firewall configuration. This can be useful in situations that require a quick recovery from unexpected behavior or rule creation.
To restore to a previous version:
- From your dashboard, select the project that you'd like to configure a rule for and then select the Firewall tab
- Select the View Audit Log option by clicking on the ellipsis menu at the top right
- Find the version that you would like to restore to by using the date and time selectors
- Select Restore and then Restore Configuration on the confirmation modal
Depending on your plan, there are limits for each Vercel WAF feature.
| Feature | Hobby | Pro | Enterprise |
|---|---|---|---|
| Project level IP Blocking | Up to 10 | Up to 100 | Custom |
| Account-level IP Blocking | N/A | N/A | Custom |
| Custom Rules | Up to 3 | Up to 40 | Up to 1000 |
| Custom Rule Parameters | All | All | All |
| Managed Rulesets | N/A | N/A | Contact sales |
- For Account-level IP Blocking, CIDR rules are limited to
/16for IPv4 and/48for IPv6 - For Custom Rule Parameters, JA3 (Legacy) is available on Enterprise plans
Was this helpful?