"This product supplies options for web security for applications accessing sensitive information."
"This is not a product that you need to install. You just use it."
"The most valuable aspect is that it protects our code. It's a bit difficult to overwrite code in our application. It also protects against threats."
"The access instruction feature is the most valuable. This is what we use the most."
"AWS has flexibility in terms of WAF rules."
"The most valuable feature is the scalability because it automatically scales up or scales down as per our requirements."
"The most valuable features of AWS WAF are its cloud-native and on-demand."
"The solution is stable."
"It is easier to configure and develop documentation to see how we have configured firewalls."
"It's very user-friendly."
"From what I've seen so far, there are no negatives to report as of yet"
"The most valuable feature is the web application firewall."
"There are key things that are used for our enterprise customers, such as Lambda and DNS."
"New and innovative way to protect the client's data."
"The solution is very good at mitigating threats."
"The DDoS protection is the most valuable aspect of the solution."
"I would like to see it more tightly integrated with other AWS services."
"It's a bit difficult to apply the right rules for the right security."
"I would like to be able to view a graphical deployment map in the user interface that will give me an overview of the configuration and help to determine whether I have missed any steps."
"We don't have much control over blocking, because the WAF is managed by AWS."
"The pricing model is complicated."
"The solution could improve by having better rules, they are very basic at the moment. There are more attacks coming and we have to use third-party solutions, such as FIA. The features are not sufficient to prevent all the attacks, such as DDoS. Overall the solution should be more secure."
"The setup is complicated."
"When users choose the free service, there isn't great support available to them."
"Technical support is lacking."
"There should be a specific price list for enterprise-level customers."
"It should have easier documentation for the configuration. It's very technical and people who aren't technical should also be able to do the configuration."
"There are some issues with the CDN services."
"The solution could work at being less expensive. It costs a lot to use it."
"Latencies are always a problem."
"Although I think it's quite good, it doesn't provide me with all the features I would expect to have if I were using Imperva."
"The solution could use more analytics on the backend to give us more insights into everything. More reports would be helpful."
AWS WAF is a web application firewall that helps protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources. AWS WAF gives you control over which traffic to allow or block to your web applications by defining customizable web security rules. You can use AWS WAF to create custom rules that block common attack patterns, such as SQL injection or cross-site scripting, and rules that are designed for your specific application. New rules can be deployed within minutes, letting you respond quickly to changing traffic patterns. Also, AWS WAF includes a full-featured API that you can use to automate the creation, deployment, and maintenance of web security rules.
Cloudflare is the leading performance and security company helping to build a better Internet. Today the company runs one of the world’s largest networks that powers more than 9 million Internet applications. More than 10 trillion Internet requests flow through Cloudflare’s network each month, accounting for nearly 10% of all Internet requests globally.
Cloudflare protects and accelerates any Internet application online without adding hardware, installing software, or changing a line of code. Internet properties powered by Cloudflare have all web traffic routed through its intelligent global network, which gets smarter with each new site added. As a result, they see significant improvement in performance and a decrease in spam and other attacks.
AWS WAF is ranked 5th in Web Application Firewall (WAF) with 12 reviews while Cloudflare is ranked 3rd in Distributed Denial of Service (DDOS) Protection with 8 reviews. AWS WAF is rated 7.6, while Cloudflare is rated 8.2. The top reviewer of AWS WAF writes "Use this product to make it possible to deploy web applications securely". On the other hand, the top reviewer of Cloudflare writes "Robust, secure and innovative; technical support needs to be improved". AWS WAF is most compared with Microsoft Azure Application Gateway, Imperva Web Application Firewall, Azure Front Door, Akamai Kona Site Defender and Fortinet FortiWeb, whereas Cloudflare is most compared with Imperva Incapsula, Microsoft Azure Application Gateway, Azure Front Door, Palo Alto Networks WildFire and Arbor DDoS. See our AWS WAF vs. Cloudflare report.
We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.