Cloudflare Web Application Firewall Reviews

Name: Cloudflare Web Application Firewall
Brand: Cloudflare
Rating: 4.2 (24 reviews)

4.2 out of 5

24 reviews
95% willing to recommend

What is Cloudflare Web Application Firewall?

Cloudflare Web Application Firewall's intuitive dashboard enables users to build powerful rules through easy clicks and also provides Terraform integration. Every request to the WAF is inspected against the rule engine and the threat intelligence curated from protecting over 27 Million websites. Suspicious requests can be blocked, challenged or logged as per the needs of the user while legitimate requests are routed to the destination, agnostic of whether it lives on-premise or in the cloud. Analytics and Cloudflare Logs enable visibility into actionable metrics for the user.

Get the Cloudflare Web Application Firewall Buyer's Guide and find out what your peers are saying about Cloudflare Web Application Firewall, Prisma Cloud by Palo Alto Networks, Microsoft Azure Application Gateway and more!

Cloudflare Web Application Firewall is the #6 ranked solution in top Web Application Firewalls. PeerSpot users give Cloudflare Web Application Firewall an average rating of 8.4 out of 10. Cloudflare Web Application Firewall is most commonly compared to Prisma Cloud by Palo Alto Networks: Cloudflare Web Application Firewall vs Prisma Cloud by Palo Alto Networks. Cloudflare Web Application Firewall is popular among the large enterprise segment, accounting for 45% of users researching this solution on PeerSpot. The top industry researching this solution are professionals from a educational organization, accounting for 14% of all views.

Buyer's Guide

Cloudflare Web Application Firewall

June 2025

Get the report

Helped 856,873 peers since 2012

Featured Cloudflare Web Application Firewall reviews

SachidDoshi

Senior Enterprise Security Architect at HGS - Hinduja Global Solutions

The solution's learning curve can still be further reduced, which presently stands at two or three months. The product has a custom rule set that users can modify and manifest as needed. The vendor can probably shorten the learning curve using cutting-edge technologies like AI. The solution provider can also work around the web applications and identify the toolset that needs to be implemented to deploy the solution in less time. The vendor has launched a SASE product that can function with Cloudflare Web Application Firewall, but many improvements are needed in terms of features, such as the web filtering feature, and CASB has not yet been added.

Read full review

SumitSingh1

Senior Software Engineer at FalconX

I mainly use it for routing and then for monitoring the firewall We saw some improvements in our website security or our network security. Rulesets are kind of majorly used for subdomain routing and rate limiting. When we expose our API, so we need to evaluate their use cases. It's pretty…

Read full review

Hüseyin Şimşek

Head of Software Development at Obase

I use Cloudflare as a reverse proxy in front of our web part. It is crucial for hiding all traffic with Cloudflare's standard WAF For us, the key feature of Cloudflare is DDoS protection and IP hiding, especially since we are a crypto company. We also use rate limiting, particularly for our APIs.…

Read full review

Cloudflare Web Application Firewall mindshare

As of June 2025, the mindshare of Cloudflare Web Application Firewall in the Web Application Firewall (WAF) category stands at 7.5%, up from 6.4% compared to the previous year, according to calculations based on PeerSpot user engagement data.

Web Application Firewall (WAF)

PeerResearch reports based on Cloudflare Web Application Firewall reviews

Type	Title	Date
Category	Web Application Firewall (WAF)	Jun 15, 2025	Download
Product	Reviews, tips, and advice from real users	Jun 15, 2025	Download
Comparison	Cloudflare Web Application Firewall vs AWS WAF	Jun 15, 2025	Download
Comparison	Cloudflare Web Application Firewall vs F5 Advanced WAF	Jun 15, 2025	Download
Comparison	Cloudflare Web Application Firewall vs Microsoft Azure Application Gateway	Jun 15, 2025	Download

Title	Rating	Mindshare	Recommending
Prisma Cloud by Palo Alto Networks	4.2	2.1%	98%	110 interviews Add to research
Microsoft Azure Application Gateway	3.7	8.2%	79%	48 interviews Add to research

Valuable Features

Cloudflare Web Application Firewall offers valuable features like its SaaS nature with API configurability, effective OWASP and managed rulesets, ease of configuration, user-friendly interface, scalability, affordability, and straightforward installation. It excels in preventing web application attacks, provides comprehensive services under one umbrella, and delivers stable performance with fast support. Key elements include DDoS protection, caching, rate limiting, DNS setup, zero trust policy, custom rules, managed rulesets, anomaly detection, IP access rules, and bot protection.

"The stability of Cloudflare Web Application Firewall deserves a perfect 10 out of 10."
"The setup process is very simple for me."
"The rate limiting features and customizations in terms of URL match and applying policies are valuable to me."

Room for Improvement

Cloudflare Web Application Firewall's documentation is complex for new users, integration with AWS and Azure is challenging, and ModSecurity's version is outdated. Users find it difficult to track modified rules due to excessive rules, and reporting lacks granularity. Better integration with platforms is needed, alongside improvements in log management, latency, rate limiting, and real-time authentication. Customer support requires enhancement, especially for Indian customers, and a more user-friendly dashboard is suggested.

"They need to improve their support because getting a response for basic requests took around 48 hours, which is too long."
"The product can improve by having more multitenancy capability, which is currently not available."
"The product can improve by having more multitenancy capability, which is currently not available."

ROI

Users report immediate ROI from Cloudflare Web Application Firewall, with key benefits in site visibility and uptime essential for e-commerce and banking services. While it doesn't directly impact bandwidth costs, its caching system helps reduce these expenses. Determining exact savings is challenging due to fixed enterprise plan fees and multiple influencing factors. Users consistently experience ROI from its implementation.

Pricing

Cloudflare Web Application Firewall's pricing uses a subscription-based model, typically paid monthly or annually without upfront infrastructure costs. Users find its cost competitive and generally more affordable than competitors, with pricing starting at $20 and up to $200 monthly. Enterprise subscriptions offer advanced features like DDoS protection. Although some international businesses find it relatively expensive, many consider the pricing reasonable and flexible, albeit less transparent for enterprises. Support is generally included without extra charges.

"It is not too pricey."
"It starts at $20 and can easily go up to $200 monthly"
"Cloudflare Web Application Firewall is more affordable than other solutions."

Popular Use Cases

Cloudflare Web Application Firewall is primarily utilized as a SaaS-based firewall, securing web applications and servers, routing traffic, managing threats, and implementing proxy features. It protects against DDoS attacks and malicious traffic, enabling secure authentication and authorization. Various sectors use it, including manufacturing and banking, for comprehensive security functions and to manage customer platforms. It encompasses features like load balancing, CDN, order routing, and DNS zone configuration.

Service and Support

Cloudflare Web Application Firewall's customer service generally receives positive feedback for technical support, being responsive and helpful. Many users report satisfaction without frequent need for assistance. However, Indian users note limitations in local support, experiencing difficulty in communication. Feedback varies with some expressing dissatisfaction with customer service responsiveness, while others rate it highly, mentioning quick issue resolution and helpful documentation. Some users recommend SLA-based plans for optimal support experiences.

Deployment

Cloudflare Web Application Firewall's initial setup is frequently described as easy and straightforward, often requiring minimal personnel and taking a short time, like a few hours or days. Some face challenges due to documentation, especially solo users without enterprise support. The setup involves simple domain and configuration tasks. Advanced configurations and maintenance might require more time, but basic deployment is accessible even to those with limited technical knowledge, making it suitable for small to large entities.

Scalability

Cloudflare Web Application Firewall offers strong scalability, highly rated by various users for its ability to scale effortlessly. Many large organizations effectively utilize it, handling extensive user numbers with ease, supported by APIs for automation. While cost concerns arise, the scalability itself is frequently rated near perfect. Users highlight its capability to integrate more features as needed, and it functions reliably without constant oversight, providing round-the-clock protection.

Stability

Users are confident in the stability of Cloudflare Web Application Firewall. Many rate its stability highly, often nine or ten out of ten. The firewall is praised for its reliability, showing no crashes, bugs, or glitches. Some users mention it successfully handles DDoS attacks and offers effective filtering options. There have been rare downtimes, but they were resolved quickly. Users switching from other solutions value its stable performance and advanced security features.

These insights are based on the in-depth reviews provided by peers to help you make a better buying decision.

Download our Cloudflare Web Application Firewall Buyer's Guide for additional reliable information.