Quick Value Packages

Keeping your digital presence continuously tuned, optimized, and secure to align with changing business and technical requirements can be time consuming. Tap into Fastly’s expertise to keep up with the ongoing change and complexity of modern businesses -- all while freeing up your IT and engineering resources. With Fastly’s Quick Value Packages, you’re able to focus on driving your business forward.

WAF Tuning Plus Package

Applications are an important aspect of your business. Whether you have a mixture of your own revenue generating apps, partner apps (e.g. Magento, Drupal) and internal apps (e.g. Salesforce, Box), all of them must be secured in order to protect revenue and keep your data — and your users' data — safe. As you likely know, attackers can use known vulnerabilities in web apps as a backdoor into sensitive company data, and these data breaches can result in loss of business, damaged reputation, and customer churn. Maintaining a properly-sized security team to stay on top of all that can be a real challenge for many companies.

The Web Application Firewall (WAF) Tuning Plus Package helps you maintain business continuity by ensuring web and mobile apps are secure and constantly available. Along with updating your settings to the latest available, we’ll keep tabs on actual or attempted attacks and update your WAF accordingly. You’ll improve visibility into application threats while strengthening your overall security posture.


  • Outsource management of WAF freeing up scarce security resources to focus on other areas

  • Protect apps while minimizing impact on performance

  • Avoid blocking legitimate production traffic (reduce false positive rates)

  • Keep up with continuously evolving web app vulnerabilities and threats (especially zero day threats)

  • Consolidate IT spending (WAF combined with CDN)

What’s included:

  • Ongoing tuning. Over your service term for provisioned WAF services, we will:

    • Update your profile to record any new changes to your back-end application stack or perceived security risks based on actual or attempted attacks

    • Updating WAF configuration set to latest available (if applicable)

    • Enable, disable or change new or existing WAF rules based on new traffic patterns or security risks not present in the initial tuning cycle (once per quarter, or on demand as needed)

    • On-demand (up to 3x per quarter) critical attack mitigation help. Upon request, Fastly will add new critical protections (if applicable) into your WAF.

  • Authenticated TLS to Origin. To mitigate WAF bypass attacks, Fastly will configure client-authenticated connections to your origin server for each service running WAF. As part of this service you can have Fastly updates your certificates prior to expiration or if revoked. We can also generate certificates and keys on your behalf.

By submitting your request, you consent to your information being transmitted to Fastly in the United States for processing consistent with our Privacy Policy.