Next-Gen WAF
Application security at the edge
Fastly Next-Gen WAF uses patented SmartParse technology to analyze request context, detecting SQL injection, XSS, and OWASP Top 10 attacks with 99.9% accuracy and a false positive rate below 0.01%. The system operates across a global edge network with 150+ PoPs, blocking threats in less than 10 ms from the attack source. Its unique agent-based architecture enables deployment both at the edge and on origin servers, ensuring comprehensive protection.
Enterprise-grade protection compliant with regulatory requirements and security standards
Fast deployment with minimal resource overhead
Dedicated support from a certified partner
Easy integration with your existing infrastructure
Key features
- SmartParse technology analyzing request context without regex-based rules
- Protection against OWASP Top 10: SQLi, XSS, RCE, SSRF, path traversal, injection
- Deployment across 150+ global PoPs with sub-10ms latency blocking
- Agent-based architecture for edge, origin, containers, and serverless
- Power Rules with VCL language for custom security logic and rate limiting
Business benefits
- False positive rate < 0.01%, eliminating the blocking of legitimate traffic
- 50% latency reduction thanks to edge blocking instead of processing at the origin
- Real-time attack visibility with Attack Signals and threat dashboards
- Deployment in minutes without learning mode thanks to SmartParse accuracy
- Protection for APIs, GraphQL, and WebSocket alongside traditional web applications
Why Fastly?
An edge cloud platform offering a next-generation CDN, advanced WAF, and DDoS protection. Fastly stands out with its performance, flexibility, and the ability to deploy security logic directly at the edge, blocking threats as close to their source as possible.
Need Next-Gen WAF in your organization?
As a certified Fastly partner, we'll help you deploy and configure the solution.