-
Lesson 1: Rate Limit Rules' Limitations 1 min
-
Lesson 2: What is Advanced Rate Limiting 2 min
-
Lesson 3: Client Identifier 2 min
-
Lesson 4: Rate Limit Action fields 5 min
-
Lesson 5: What to do with Match Types 10 min
-
Lesson 6: Where the count happens 2 min
-
Lesson 7: Additional Limitations 2 min
-
Quiz
-
Course Feedback
Next-Gen WAF: Building Advanced Rate Limit Rules
How Rate Limit Rules work, and how you can make them.
Course Details:
Fastly’s Next-Gen WAF is powered by Fastly’s Signal Sciences platform. Rate Limit Rules allow you to block identified requests after a selected number of them are identified by your Agent in a selected time window. A great tool for blocking or cutting off bulk attacks. Our Rate Limit Rules are very similar to our Request and Signal Exclusion rules, which were covered in detail in Building Rules. In this course we’ll show you how to use the two new rule components, the Client Identifier fields, and the Rate Limit Actions, to build a Rate Limit Rule.
We highly recommend you complete Building Rules before starting this course. This course builds on concepts covered there.
Note: Advanced Rate Limiting is a separate feature from Edge Rate Limiting.
Learning Objectives:
- Rate Limit Rules are only available on the Premier Plan Tier.
- Rate Limit Rules can only be used as Site Rules, not Corp Rules.
- Recap: Conditions & Actions.
- Client Identifier fields.
- Rate Limit Action fields.
- Using the Match Types
- Where identified requests are counted - Agent vs Cloud Engine