FeaturesPricingEnterpriseSupport
LoginGet started

Web Application Firewall (WAF)

Our Web Application Firewall (WAF) helps protect your domains from bad or malicious traffic by checking every incoming request. It is powered by the OWASP Core Rule Set, a widely used collection of rules that automatically blocks common attack patterns such as SQL injection, cross-site scripting, and other suspicious payloads. All of this happens in real time, before the request can ever reach your redirect destination.

All rules are defined by the OWASP Core Rule Set. You can enable the WAF here. The WAF is available in our Business plan and up.

How does the WAF work?

  • It watches incoming requests to your domains and blocks "bad" ones.
  • If a request matches one of the OWASP rules, it gets blocked, before it reaches your redirect destination.
  • All blocked requests show up in the analytics view, so you can see what traffic was stopped.

Enabling & overriding

  • You can enable WAF at Team level, which means it applies by default to all your domains.
  • If needed, you can override the default for specific domains. This lets you turn on or off the WAF per domain.

More articles

Getting started
What is redirect.pizza?
Is redirect.pizza for me?
What can I do with redirect.pizza?
Getting started
What can I do with the Free plan?
What happens if the traffic limit is exceeded?
What is your referral program?
Setup & Configuration
Redirect settings
What are these DNS changes?
What DNS types can I use?
How long does the DNS change take?
Destination variables
Dynamic destinations
Matching
Regex matching
Wildcard subdomains
Redirect flattening
robots.txt
Redirecting non-www to www.
Troubleshooting new redirects
Features
Automatic HTTPS
Analytics
API
Broken destination monitoring
Nameservers
Automatic DNS
Email forwarding
Zapier
Terraform Provider
SAML SSO
SSO via Okta
Dedicated IP
Pause / resume
Security & Account
Security & Compliance
Service Level Agreement (SLA)
Web Application Firewall (WAF)
Two-factor authentication
HSTS (HTTP Strict Transport Security)
Prevent foreign embedding
Team management
Subprocessors
Summary email
Walkthroughs
GoDaddy: Forwarding with HTTPS support
Network Solutions: Forwarding with HTTPS support
Namecheap: Forwarding with HTTPS support
Hover: Forwarding with HTTPS support
TransIP: Forwarding with HTTPS support
Cloudflare: Forwarding with HTTPS support
Amazon Route 53: Forwarding with HTTPS support
NS1: Forwarding with HTTPS support
DigitalOcean: Forwarding with HTTPS support
Google Cloud DNS: Forwarding with HTTPS support
EuroDNS: Forwarding with HTTPS support
Azure DNS: Forwarding with HTTPS support
DNS Made Easy: Forwarding with HTTPS support
Freenom: Forwarding with HTTPS support
Mijndomein: Forwarding with HTTPS support

Can’t find the answer you’re looking for?

24 hours
E-mail us
support@redirect.pizza
Start a chat
Online 9:00 - 21:00 CEST
Phone
Available with Enterprise
Pricing Background
Domain redirects delivered hassle-free

Get started right away

  • Free plan
  • No creditcard required
Features

Everything
you need

Automatic HTTPS

We automatically obtain an SSL certificate for your domain(s). Redirection with HTTP & HTTPS out-of-the-box.
Learn more

Analytics

Who is still visiting those old domains? Gain valuable insight with detailed statistics and find out where the hits are coming from.
Learn more

API

Connect your software to automatically create redirects via our API. Automation makes your life easier.
Learn more

Path forwarding

Keep the original path and keep it in the destination for a smooth domain migration and keeping your SEO game intact.
Learn more

Query Parameter Forwarding

Forward query parameters found on the source URL to the destination.
Learn more

Email Forwarding

Setup your domains to automatically forward email. All your needs for managing your domains in one platform.
Learn more
Discover all features