AWS WAF Pros

Adrian Milea - PeerSpot reviewer
Raiffeisen at Raiffeisen Bank Romania
The agility is great for us in terms of cloud services in general.
View full review »
RB
Engineer at a renewables & environment company with 1,001-5,000 employees
As a basic WAF, it's better than nothing. So if you need something simple out of the box with default features, AWS WAF is good.
View full review »
Kavin Kalaiarasu - PeerSpot reviewer
Security Analyst at M2P Fintech
I believe the most impressive features are integration and ease of use. The best part of AWS WAF is the cloud-native WAF integration. There aren't any hidden deployments or hidden infrastructure which we have to maintain to have AWS WAF. AWS maintains everything; all we have to do is click the button, and WAF will be activated. Any packet coming through the internet will be filtered through.
View full review »
Buyer's Guide
AWS WAF
November 2022
Learn what your peers think about AWS WAF. Get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
655,113 professionals have used our research since 2012.
TM
AWS Security Specialist at a tech services company with 501-1,000 employees
The most valuable features are the geo-restriction denials and the web ACL.
View full review »
AB
Solution Architect at a non-profit with 10,001+ employees
The solution is stable.
View full review »
MK
Principal Cloud Architect at a tech services company with 51-200 employees
The most valuable features of AWS WAF are its cloud-native and on-demand.
View full review »
LD
Regional Security Team Lead at a computer software company with 1,001-5,000 employees
The simple configuration and the scalability have been most valuable. We are able to scale across all of our different AWS instances.
View full review »
AdviseIT67 - PeerSpot reviewer
Cloud Architect at Tata Consultancy Services
The most valuable feature of AWS WAF is the extra layer of security that I have when connecting to my web applications.
View full review »
Harkamal-Singh - PeerSpot reviewer
Solution architect at NTT
Stable and scalable web application firewall. Setting it up is straightforward.
View full review »
Trivikram Rajendreaprabhu - PeerSpot reviewer
Senior security engeneer at a media company with 1,001-5,000 employees
The customizable features are good.
View full review »

AWS WAF Cons

Adrian Milea - PeerSpot reviewer
Raiffeisen at Raiffeisen Bank Romania
For uniformity, AWS has a well-accepted framework. However, it'll be better for us if we could have some more documented guidelines on how the specific business should be structured and the roles that the cloud recommends.
View full review »
RB
Engineer at a renewables & environment company with 1,001-5,000 employees
We don't have much control over blocking, because the WAF is managed by AWS.
View full review »
Kavin Kalaiarasu - PeerSpot reviewer
Security Analyst at M2P Fintech
It would be better if AWS WAF were more flexible. For example, if you take a third-party WAF like Imperva, they maintain the rule set, and these rule sets are constantly updated. They push security insights or new rules into the firewall. However, when it comes to AWS, it has a standard set of rules, and only those sets of rules in the application firewalls trigger alerts, block, and manage traffic. Alternative WAFs have something like bot mitigation or bot control within the WAF, but you don't have such things in AWS WAF. I will say there could have been better bot mitigation plans, there could have been better dealer mitigation plans, and there could be better-updated rule sets for every security issue which arises in web applications. In the next release, I would like to see if AWS WAF could take on DDoS protection within itself rather than being in a stand-alone solution like AWS Shield. I would also like a solution like a bot mitigation.
View full review »
Buyer's Guide
AWS WAF
November 2022
Learn what your peers think about AWS WAF. Get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
655,113 professionals have used our research since 2012.
TM
AWS Security Specialist at a tech services company with 501-1,000 employees
On the UI side, I would like it if they could bring back the geolocation view on the corner.
View full review »
AB
Solution Architect at a non-profit with 10,001+ employees
While the complexity of the installation can vary from one service to another, overall, I would say that it and the configuration and navigation are somewhat complex.
View full review »
MK
Principal Cloud Architect at a tech services company with 51-200 employees
The solution could improve by having better rules, they are very basic at the moment. There are more attacks coming and we have to use third-party solutions, such as FIA. The features are not sufficient to prevent all the attacks, such as DDoS. Overall the solution should be more secure.
View full review »
LD
Regional Security Team Lead at a computer software company with 1,001-5,000 employees
This solution could be improved if the configuration steps were more specific to WAF, compared to other cloud services.
View full review »
AdviseIT67 - PeerSpot reviewer
Cloud Architect at Tata Consultancy Services
AWS WAF could improve by making the overall management easier. Many people that have started working with AWS WAF do not have an easy time. They should make it easy to use.
View full review »
Harkamal-Singh - PeerSpot reviewer
Solution architect at NTT
Technical support for AWS WAF needs improvement.
View full review »
Trivikram Rajendreaprabhu - PeerSpot reviewer
Senior security engeneer at a media company with 1,001-5,000 employees
The product could be improved by expanding the weightage units of rules.
View full review »
Buyer's Guide
AWS WAF
November 2022
Learn what your peers think about AWS WAF. Get advice and tips from experienced pros sharing their opinions. Updated: November 2022.
655,113 professionals have used our research since 2012.