1 min read
Pro and Enterprise customers can now configure firewall rules to bypass system mitigations, including DDoS protection, for specific IPs and CIDR ranges.
We strongly recommend against bypassing protections. However, if you feel like the protections are blocking legitimate traffic, this feature presents a break-glass option. This may be particularly applicable if you have a proxy in front of Vercel that provides DDoS protection and which may interfere with Vercel's protection.
To configure system bypass rules:
Navigate to the Firewall in the Vercel dashboard
Click Configure at the top right to access the configuration page
Use the System Bypass Rules section at the bottom to specify the IP address or CIDR range to bypass mitigations for your production domains
Please note that you are responsible for all usage fees incurred when using this feature, including illegitimate traffic that may otherwise have been blocked.
Pro customers can set up to 3 bypass rules and Enterprise customers can set up to 5.
Learn more about Vercel Firewall's automatic DDoS mitigation.