How-to

Vercel WAF

Learn how to secure your website with the Vercel Web Application Firewall (WAF)
Table of Contents

Vercel WAF is available on all plans

Those with the member, viewer, developer and administrator roles can access this feature

The Vercel WAF, part of the Firewall, provides security controls to monitor and control the internet traffic to your site through logging, blocking and challenging. When you apply a configuration change to the firewall, it takes effect globally within 300ms and can be instantly rolled back to prior configurations.

You can control the internet traffic to your website in the following ways:

You can quickly revert to a previous version of your firewall configuration. This can be useful in situations that require a quick recovery from unexpected behavior or rule creation.

To restore to a previous version:

  1. From your dashboard, select the project that you'd like to configure a rule for and then select the Firewall tab
  2. Select the View Audit Log option by clicking on the ellipsis menu at the top right
  3. Find the version that you would like to restore to by using the date and time selectors
  4. Select Restore and then Restore Configuration on the confirmation modal

Depending on your plan, there are limits for each Vercel WAF feature.

FeatureHobbyProEnterprise
Project level IP BlockingUp to 10Up to 100Custom
Account-level IP BlockingN/AN/ACustom
Custom RulesUp to 3Up to 40Up to 1000
Custom Rule ParametersAllAllAll
Managed RulesetsN/AN/AContact sales
  • For Account-level IP Blocking, CIDR rules are limited to /16 for IPv4 and /48 for IPv6
  • For Custom Rule Parameters, JA3 (Legacy) is available on Enterprise plans

Note: If your project needs more than these limits or for managed rulesets, contact us to discuss the Enterprise plan.

Contact Sales
Last updated on December 12, 2024