Security

These articles provide information about the administrative, physical, and technical safeguards that protect the Fastly CDN service, as well as describe how to secure communications between Fastly and your origin servers and customers.

These articles describe how to restrict access to resources by allowing or blocking IP addresses with access control lists (ACLs).

• About ACLs
• Manually creating access control lists
• Using the IP block list
• Working with ACLs using the web interface

These articles describe how to work with Fastly's rate limiting features.

• About rate limiting
• Working with rate limiting policies

These articles describe how to secure communications between Fastly, your origin servers, and your customers.

• Support for App Transport Security

These articles provide information about the administrative, physical, and technical safeguards that protect the Fastly CDN service.

• Data management
• Fastly Next-Gen WAF (powered by Signal Sciences) security measures
• Penetration testing your service behind Fastly
• Security measures
• Security program

These articles describe how to set up TLS certificates with Fastly services.

• Enabling HSTS through Fastly
• Enabling TLS 1.3 through Fastly
• Forcing a TLS redirect
• Setting up Mutual TLS authentication
• Setting up TLS on a shared Fastly domain
• Setting up TLS with certificates Fastly manages
• Setting up TLS with your own certificates
• TLS termination

These articles provide information about the Fastly Web Application Firewall (WAF 2020) security product.

• About the Fastly WAF dashboard (2020)
• About the Fastly WAF rule management interface (2020)
• Creating a custom WAF error page (2020)
• Fastly WAF logging (2020)
• Managing rules on the Fastly WAF (2020)
• WAF Rule Exclusions (2020)
• Web Application Firewall (WAF) (2020)

These articles provide information about the original Fastly Web Application Firewall (WAF) security product.

• About the Fastly WAF dashboard (original)
• About the Fastly WAF rule management interface (original)
• Creating a custom WAF error page (original)
• Fastly WAF logging (original)
• Fastly WAF rule set updates and maintenance (original)
• Managing the Fastly WAF (original)
• Web Application Firewall (WAF) (original)