We changed our name from IT Central Station: Here's why

NGINX App Protect Questions

Miriam Tover
Content Specialist
PeerSpot (formerly IT Central Station)
Nov 07 2021

Hi Everyone,

What do you like most about NGINX Web Application Firewall?

Thanks for sharing your thoughts with the community!

4 Answers
Miriam Tover
Content Specialist
PeerSpot (formerly IT Central Station)
Nov 07 2021


We all know it's really hard to get good pricing and cost information.

Please share what you can so you can help your peers.

3 Answers
Miriam Tover
Content Specialist
PeerSpot (formerly IT Central Station)
Nov 07 2021

Please share with the community what you think needs improvement with NGINX Web Application Firewall.

What are its weaknesses? What would you like to see changed in a future version?

4 Answers
Julia Frohwein
Content and Social Media Manager
PeerSpot (formerly IT Central Station)
Nov 07 2021

How do you or your organization use this solution?

Please share with us so that your peers can learn from your experiences.

Thank you!

4 Answers
Miriam Tover
Content Specialist
PeerSpot (formerly IT Central Station)
Nov 07 2021

If you were talking to someone whose organization is considering NGINX Web Application Firewall, what would you say?

How would you rate it and why? Any other tips or advice?

4 Answers
Web Application Firewall (WAF) Questions
Evgeny Belenky
PeerSpot (formerly IT Central Station)
Nov 01 2021


Would you recommend using an open-source WAF for a large company? If so, which one and why?


2 Answers
Evgeny Belenky
PeerSpot (formerly IT Central Station)
Oct 07 2021

Hi security and IT professionals,

In what cases should an organization choose a Firewall as a Service (FWaaS) solution? 

When should FWaaS be a complementary product to the on-premise FW/NGFW?

Carolyn RaabFWaaS offered by an MSSP is a way to ensure your security keeps pace and is… more »
Stuart BermanI have looked at FWaaS for years (originally from Value Added Network service… more »
reviewer1357092Generally, FWaaS would be a preferred option for organizations that: 1) Don't… more »
5 Answers
Evgeny Belenky
PeerSpot (formerly IT Central Station)
Oct 11 2021

Hi peers,

What are the OWASP Top 10 this year? 

What single web app security tool (or a minimum set of tools) would you recommend for overall web app protection (from the most critical security risks covered by these Top 10)?

Andrew Van Der StockWe are due to release the OWASP Top 10 2021 on September 24, 2021. We will be… more »
Curtis YankoI’m not sure the top 10 is changing this year but if it is it will be to squeeze… more »
reviewer1572348Believe no single tool will address all OWASP Top 10 issues. One will need a… more »
4 Answers

Hi community,

I'm trying to understand what limitations AWS WAF has vs other (alternative) Web Application Firewall (WAF) products.

John RendyHi Varun, I have had experienced with several WAF deployments and deep… more »
2 Answers
Edwin EzeOsiago
Head of Security Solutions at Infodata Professional Services
Jul 26 2021

Should one go for a URL Filtering as an add-on to NGFW or just deploy a Web proxy, instead?

I am one who advocates that firewalls with URL Filtering can't serve better than Web security solutions (i.e., a Web proxy).

What's your opinion?

Mike HounsomeOver 50% of security vulnerabilities are non-Web based traffic, such as DNS… more »
Evgeny BelenkyHi @Oleg Pekar and @Manish Nalawade. Can you share your thoughts?
chiefexe795285Use a Web Proxy that will protect your users when they are working at home as… more »
9 Answers
Steven Mooney
User at ODS
Jan 06 2022
Has anyone ever heard of secureaccess.com?  The service they are offering appears to tick all the boxes that I'm after. Do any other companies do something remotely similar or the same thing? I'm going to list a few things that I'm after... I need a service that shields the connection betwe...
Read More »
1 Answer
Menachem D Pritzker
Director of Growth
IT Central Station
Aug 10 2021

Hi community, 

There are so many firewall products in the market today. Who are we going to be talking about 3-5 years from now?

imadamNetscope, Zscaler if they continue route they are on now. FIrewalls needs great… more »
Nehad ElkordiCisco Portfolio is focusing on total security inside and outside including cloud… more »
Lipaz HesselWell with the SD-WAN raising it is common to see cloud firewall implementations… more »
25 Answers
PeerSpot (formerly IT Central Station)
Aug 16 2021

Hi professionals,

There seems to be some controversy around whether or not SSL Inspection should be used by businesses. 

What is your opinion - should they be used, and if so when? Conversely, what are the reasons for not using SSL inspection?

Bruce BennettI am a proponent of SSL inspection, as long as you have another function/service… more »
Leo TseSSL inspection requires high firewall resources, the use depends on what your… more »
David StoreySSL Inspection is great for corporate/organizational security as it allows you… more »
10 Answers
PeerSpot (formerly IT Central Station)
Nov 12 2021

It seems that there is some overlap between these two types of solutions - how do Bot Managers and WAF differ? How can they work together to improve security?

Oluwatosin OmojolaA Bot manager differs from a WAF in that it focuses on the management of Bots… more »
Mike KajubiWhat’s the Difference Between a WAF and Bot Blocking Solution? The main… more »
Robert FalboBot solutions offer much more targeted protection against Bit traffic vs a WAF… more »
5 Answers
PeerSpot (formerly IT Central Station)

Is a WAF the best defense against a DDoS attack? What are the most effective ways of protecting a business against DDoS attacks? 

Georges SamahaHello there In order to Talk about DDoS protection, we have at First to split… more »
7 Answers
Prasert Mahapol
Sales Director with 51-200 employees
Aug 31 2021

I am a Sales Director at a company with less than 1,000 employees. 

I am researching Web Application Firewalls (WAF). I am considering R&S (DenyAll) and Imperva. Which would you recommend? 

Are there others I should consider?

JimDavisImperva is a strong choice, given their security focus and ongoing R&D into the… more »
5 Answers
Unmesh Deshpande
CTO at Kingsway Hospitals
Aug 24 2021
Hello community,  I am the CTO for a large multi-specialty private hospital. We are currently researching WAF solutions. Which WAF solution would you recommend with no heritage for subscription charges? We are a hospital with many web apps that need to be published soon and quickly. We have dec...
Read More »
SrdjanI would always recommend F5 WAF, it is probably the best one on the market… more »
Aum e HaniI myself used Cloudflare as the easiest and quicker solution to implement. But… more »
Jeremy RammalaereWe have been having great success with FortiWeb appliances. They offer various… more »
17 Answers
Sujit Sharma
Information Security Engineer at a tech services company with 1,001-5,000 employees

We required a 24/7 automated vulnerability monitoring tool for securing our web applications. We are looking for options like Sitelock and Immuniweb.

it_user218361I haven't heard about SiteLock or Immuniweb, but I have used Qualys Web… more »
it_user550380In my experience the best option is to make dast and sast before each change of… more »
it_user648771While Cloudflare and AWS offer similar solutions, they do not have the scale, or… more »
13 Answers