WAF & DDoS Protection

L7 attack mitigation.

Web Application Firewall and DDoS protection. OWASP Top 10 rules, bot management, rate limiting, and 15 Tbps+ scrubbing capacity.

Enable protection View docs
🛡️ WAF15 Tbps

15T bps

Capacity

OWASP

Rules

ML detect

Bots

99.99%

SLA

Protected, always.

15 Tbps DDoS. OWASP WAF. Bot management.

15 Tbps scrubbing

DDoS mitigation with 15 Tbps+ global scrubbing capacity.

OWASP Top 10

Pre-built rules for SQL injection, XSS, and more.

Bot management

ML-powered bot detection with CAPTCHA challenges.

Rate limiting

Configurable rate limits per IP, path, and header.

Custom rules

Write custom WAF rules with flexible matching.

Real-time logs

Full request logging with threat intelligence overlay.

Getting started

Launch your first instance in three steps. CLI, console, or API — your choice.

Terminal
ur security waf enable \
  --domain=api.example.com \
  --ruleset=owasp-top10

Protection patterns.

E-commerce and API security.

E-commerce protection

Protect checkout and payment from attacks.

View tutorial

Suggested configuration

OWASP · Bot mgmt · Rate limit

Estimate your costs

Create detailed configurations to see exactly how much your architecture will cost. Pay for what you use, down to the second.

Configuration 1

Estimated: $31.20/mo

WAF & DDoS

Processing Volume

M/mo

Add-ons

Compliance ReportsSOC 2, HIPAA, PCI-DSS reporting
Config 1 cost$31.20

Cost details

$31.20

Bot management, IP filtering, and managed rulesets.

Configuration 1
$31.20
5 Protected Resource(s)$25.00
Event Processing$6.00
30-day Log Retention$0.20
Share

Works seamlessly with

IAM
CDN
ZTNA
Logging
SIEM
Analytics

Frequently asked questions

Protected, always.

15 Tbps DDoS. OWASP WAF. Bot management.

Enable protection View docs