Security

These articles provide information about the administrative, physical, and technical safeguards that protect the Fastly CDN service, as well as describe how to secure communications between Fastly and your origin servers and customers.

These articles describe how to restrict access to resources by allowing or blocking IP addresses with access control lists (ACLs).

• About ACLs
• Manually creating access control lists
• Using the IP block list
• Working with ACLs using the web interface

These articles describe how to work with Fastly's Edge Rate Limiting feature.

• About Edge Rate Limiting
• Working with rate limiting policies

These articles describe how to secure communications between Fastly, your origin servers, and your customers.

• Support for App Transport Security

These articles provide information about the administrative, physical, and technical safeguards that protect the Fastly CDN service.

• Data management
• Fastly Next-Gen WAF (powered by Signal Sciences) security measures
• Penetration testing your service behind Fastly
• Security measures
• Security program

These articles describe how to set up TLS certificates with Fastly services.

• Enabling HSTS through Fastly
• Enabling TLS 1.3 through Fastly
• Forcing a TLS redirect
• Serving HTTPS traffic using certificates you manage
• Serving HTTPS traffic using Fastly-managed certificates
• Setting up free TLS
• TLS termination

These articles provide information about the Fastly Web Application Firewall (WAF 2020) security product.

• About the Fastly WAF dashboard (2020)
• About the Fastly WAF rule management interface (2020)
• Creating a custom WAF error page (2020)
• Fastly WAF logging (2020)
• Managing rules on the Fastly WAF (2020)
• WAF Rule Exclusions (2020)
• Web Application Firewall (WAF) (2020)

These articles provide information about the original Fastly Web Application Firewall (WAF) security product.

• About the Fastly WAF dashboard (original)
• About the Fastly WAF rule management interface (original)
• Creating a custom WAF error page (original)
• Fastly WAF logging (original)
• Fastly WAF rule set updates and maintenance (original)
• Managing the Fastly WAF (original)
• Web Application Firewall (WAF) (original)