3 min read
At Vercel, we believe security should be intuitive, not intimidating. The best security tool is the one that's actually used. It should be clear, useful, and never in the way.
But that's not always the norm. Security tooling can often feel like a tradeoff against shipping velocity. When UX is an afterthought, teams leave tools off or in "logging mode" forever, even when risks are high.
That's why we've redesigned the Vercel Firewall experience from the ground up. The new UI helps you see more, do more, and feel confident in your app's resilience to attacks.
Link to headingDesigning for every Vercel user
The redesign started with listening. Users told us:
I want to easily see active DDoS events
I need more information on what the Firewall blocked
I need a faster way to investigate traffic alerts or spikes
Developers, SREs, and security teams all use the Firewall for maintenance and troubleshooting. They configure rules, monitor traffic, and respond to unusual activity.
The new Firewall UI is designed for everyone using Vercel. It surfaces clear, actionable information, simplifies navigation, and helps teams resolve issues quickly when it matters most.
Link to headingA better way to see and secure your traffic
The new design brings together visibility, context, and control in one view.
A redesigned overview page provides a unified, high-signal view of Firewall activity
New sidebar navigation offers one click to Overview, Traffic, Rules, and Audit Log
Key activity and alert feeds surface unusual patterns and potential threats
Improved inspection tools make it faster to move from alert to insight
Link to headingA new overview for all security events
The Overview page is your high-level control center for the Firewall. It gives you a clear, birds-eye view of your site’s security posture. The traffic chart remains at the top, and we now surface the most important information based on recent activity.
Four tables surface key Firewall activity so you can see the current state and act quickly when needed:
Alerts shows recently mitigated DDoS attacks
Rules displays top rule activity by volume
Events list mitigations taken by Firewall
Denied IPs show blocked connections by client IP
Link to headingComprehensive traffic intelligence
The new Traffic page focuses entirely on understanding activity across your site. You can now drill down into the detection signals that you care about the most, and filter those signals based on specific mitigation actions on the traffic tab. These updates make it easier to spot patterns or anomalies before they become problems.
We now surface dedicated feeds for:
Top IPs
Top JA4 digests
Top AS names
Top User Agents
Top Request Paths
Rules with most activity
Link to headingDedicated rules and activity
Firewall Rules now have a dedicated tab on the sidebar. You can see and manage all of your WAF custom rules in this view, including Bot Protection, Managed Rulesets, IP Blocking, and more. We’ve also moved the Audit Log to a dedicated tab for full visibility into Firewall changes.
Link to headingFaster event inspection
Clicking an alert or event now opens a detailed view directly in the page. You can dive deeper into Firewall activity and investigate suspicious traffic or DDoS attacks without context switching, helping you diagnose issues faster and take action immediately.
Link to headingSecurity designed for you
Security is usability. When tools are clear and well-designed, teams act faster and stay safer, without sacrificing shipping velocity.
We'd love your feedback. Explore the new Firewall experience today in your Vercel Dashboard and share your thoughts in the Vercel Community.