Questions about pricing on Vercel Firewall rate limiting

stephentangcook · May 20, 2025, 6:29pm

Questions about pricing on Vercel Firewall rate limiting:

The rate limit pricing states $0.5 per 1M allowed requests. Is this applied before or after other filters such as DDOS Mitigation?
If multiple rate limit rules are added, is the $0.5 per 1M pricing applied overall, or to each rate limit rule?

anshumanb · May 21, 2025, 5:32am

Hi @stephentangcook, welcome to the Vercel Community!

Thanks for posting your question here.

According to the Firewall docs, DDOS mitigation happens before the Web application firewall, as shown in this image:

About DDOS billing, you are only charged for requests before the attack is detected by our system and for any request that doesn’t classify as DDOS. You can learn more here, DDOS and Billing.

About your second question: you charged per 1M requests that go through to your application after applying all the rules (as per the image shared earlier). The pricing is dependent on the region. So, I’d request you to read more on the Usage & Pricing for Vercel WAF docs.

amyegan · May 23, 2025, 8:36pm

WAF rate limiting now has higher included limits

Topic		Replies	Views
Malicious bots and firewall : charged for denied? Help firewall	8	51	May 23, 2025
High Usage Analytics Despite Firewall Blocking Malicious DDOS Traffic Help firewall , usage	3	34	January 22, 2025
HELP -> Service Disruption Due to DDoS Attack -> IMPORTANT Help firewall	4	26	February 28, 2025
Assistance Needed to Address Unwanted Traffic on Our Application Help firewall	4	36	December 10, 2024
DDoS Attack Protection Help firewall	2	28	January 9, 2025

Questions about pricing on Vercel Firewall rate limiting

Related topics