No more typing reviews! Try our Samantha, our new voice AI agent.

Akamai App and API Protector vs Fortinet FortiAppSec Cloud comparison

Sponsored
 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cloudflare Web Application ...
Sponsored
Ranking in Web Application Firewall (WAF)
7th
Average Rating
8.6
Reviews Sentiment
7.4
Number of Reviews
26
Ranking in other categories
No ranking in other categories
Akamai App and API Protector
Ranking in Web Application Firewall (WAF)
20th
Average Rating
8.4
Reviews Sentiment
6.9
Number of Reviews
29
Ranking in other categories
Distributed Denial-of-Service (DDoS) Protection (8th), Cloud and Data Center Security (13th)
Fortinet FortiAppSec Cloud
Ranking in Web Application Firewall (WAF)
26th
Average Rating
9.0
Reviews Sentiment
6.6
Number of Reviews
2
Ranking in other categories
CDN (11th), Distributed Denial-of-Service (DDoS) Protection (19th), API Security (16th), Dynamic Application Security Testing (DAST) (9th)
 

Featured Reviews

DB
CTO at PlayNirvana
Advanced security reporting has protected high-traffic betting platforms from constant attacks
I don't see room for improvement to Cloudflare Web Application Firewall. One thing I don't know much about because we have a dedicated IT team for that, and I'm not involved with Cloudflare much anymore. But if I were to compare them to F5, I would like to see more features that F5 offers. F5 has an option to bring the whole infrastructure, the whole WAF and all their packages, Bot Management, and everything else on your infrastructure. You need to install certain services from their side, and then you can choose if you would like requests to hit your servers immediately or if requests need to be proxied through F5 backbone. That would be a nice addition because we have 90% of the traffic as legit traffic coming from whitelisted servers. If it comes from whitelisted servers, I don't need to go every request through the backbone; I could easily just IP whitelist everything. Then I could maybe have Bot Management on my infrastructure that drastically reduces the price of Cloudflare. I would like to see Push CDN more improved in the next release of Cloudflare Web Application Firewall. And maybe something similar to Pushpin that Fastly has, which is an option where you can push messages that then can be scaled globally over the network. From our perspective, if we have a listener that listens for stock updates, I would just need to have one processor that pushes those updates to the Cloudflare API, and then Cloudflare would broadcast that message to all listeners. Cloudflare will check the order of the message, and if you, as a customer, are not connected or have some kind of network issue, when you reconnect, you will receive the latest state and missing updates.
Gavin Pinho - PeerSpot reviewer
Privacy & Risk Management Vice President, Information Security at a computer software company with 501-1,000 employees
Has provided strong protection against evolving threats but still needs support for configuration fine-tuning
The standout features of Akamai App and API Protector are rooted in it being the Web Application Firewall, where all traffic gets scanned, including the implementation of web firewall rules, and after this phase, traffic proceeds through the BMP, which is Bot Management. Akamai App and API Protector exceeds expectations in terms of AI capabilities, and it genuinely combines a plethora of advanced features. The area in which Akamai excels compared to other competitors with a WAF is in threat intelligence, as threats continually evolve, requiring ongoing updates to backend algorithms to effectively capture smart bots, and Akamai's commitment in that regard is backed by an excellent team, while other providers are still catching up.
OE
CIO at a financial services firm with 51-200 employees
Advanced threat protection has reduced financial risk and improves application security visibility
The issue I have with Fortinet FortiAppSec Cloud is that the real-time analysis is not robust; I am unable to see all the logs of everything that happened, including what is passive. It only logs when there are suspicious activities, which means if something is not considered suspicious by Fortinet, I will not see the full picture. That is a disadvantage because it will not log unless it identifies an IOC or attacks, meaning I cannot see traffic information in a way that helps build more intelligence. The biggest issue I have with Fortinet FortiAppSec Cloud is that the logging is not as extensive as I would prefer. For instance, if there was an issue two days ago and Fortinet FortiAppSec Cloud did not mark it as a concern, I will not see any information about that, making it challenging to explain to customers if their request did not reach us. It hampers visibility from an API perspective. They need to enhance monitoring and logging to be more extensive and capture even passive activities. The AI integration in Fortinet FortiAppSec Cloud is still new. The generative models are good, but there is much work left to improve. It is not as intelligent as it could be; thus, enhancements around the AI co-assistant would be beneficial. Additionally, logging and monitoring need improvement as I can capture traffic and investigate offline on my Fortinet firewall, including full traffic view, but Fortinet FortiAppSec Cloud currently focuses only on security concerns, which does not give the complete picture.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Some of the most valuable features of Cloudflare Web Application Firewall include its DNS zone setup and the zero trust policy."
"Caching is the most valuable feature of Cloudflare Web Application Firewall."
"The product has improved our security posture by blocking bad actors."
"The solution protects our application, which runs on the HTTP protocol, from DDoS attacks."
"Cloudflare has positively impacted my organization by making it easier for me to handle and set up DNS for multiple clients; I can easily go in and access their accounts, make changes they need, and it's a one-stop shop."
"It's pretty convenient and pretty easy to set up and run. And then kind of for static content, it also offers caching."
"The stability of Cloudflare Web Application Firewall deserves a perfect 10 out of 10."
"The initial setup process is simple."
"Akamai Web Application Protector is exceptionally stable; after all, it is Akami."
"Site Defender service helps prepare, respond, and optimize against modern-day web attacks."
"Akamai is a very reliable provider and a very safe bet that will suit most environments' needs."
"I have contacted the support team of Akamai... I am happy with their responses and answers to my problems."
"If you compare it to other products in the market, it's quite holistic in terms of the features that it provides."
"Overall, I am happy with Site Defender because what it's doing, it's doing well."
"The dashboard is the most interesting feature of the Akamai portal where you can have a detailed analysis of all the attacks that are happening. You can drill down an issue and see exactly what is happening, who are the bad guys attacking your website, and how Akamai is protecting the website. That is the most valuable feature."
"I like that the charges are all based on usage and labor costs. For the time that we spend onboarding almost 252020 FQDN, Akamai charges us only for the traffic usage, but it's only charging us for the labor costs for onboarding."
"We have seen a reduction in incidents and a good return on investment from Fortinet FortiAppSec Cloud, with our return on investment around 60%."
"My favorite Fortinet device is the FortiGate next-gen firewall itself; it is a complete suite with intrusion prevention, intrusion detection, anti-malware, anti-DDoS, and SD-WAN functionalities."
 

Cons

"The platform's control features related to real-time authentication and response time need improvement."
"Support can be challenging at times."
"Their documentation could be better. They don't have documentation that explains everything well."
"The reporting could be improved if it were more granular."
"They have some limitations with third-party integrations."
"We don't even use Cloudflare Bot Management because it's too expensive; you need to pay per request, and it's much cheaper to get one or two additional machines."
"Its stability could be better."
"A key challenge arises when dealing with numerous integrations with HVAC systems. Depending on the specifics, there might be some configuration mismatches, which necessitate specific support."
"The product should provide a secure NTP."
"It could have better analytics and reporting visibility in the OEM console."
"They are already very flexible, but room for improvement is there. Reports generation could be better and should be improved."
"Akamai needs to focus on quickly responding to risks, even those that may potentially be of zero threat..Maybe some of the documentation is a little confusing. They have a lot of different places where you can go to get information, and some of the information is quite out of date."
"The custom rules must be improved."
"The custom rules were difficult to use."
"The solution could offer even more integrations."
"It would be nice if Akamai Web Application Protector's price is lowered and made cheaper."
"The issue I have with Fortinet FortiAppSec Cloud is that the real-time analysis is not robust; I am unable to see all the logs of everything that happened, including what is passive."
"Real-time traffic analysis has posed an issue for us because we did not see logs for legitimate traffic."
 

Pricing and Cost Advice

"What's my experience with pricing, setup cost, and licensing? I believe the pricing is not the best, but it's reasonable and acceptable. We also use the McAfee system in parallel. In terms of pricing, its okay - not great, but not bad either. It falls in the middle, which is acceptable. In terms of support licensing, last time, we were searching for a solution, and we considered products from resellers rather than directly from the cloud provider. However, the pricing we encountered was exceptionally high. As a result, we are inclined to select support from the reseller."
"The annual licensing fee is $10,000 USD."
"Cloudflare offers different types of subscriptions for businesses, enterprises, and personal users, and the pricing is negotiable."
"The solution's pricing option needs to be more transparent for enterprise clients."
"Cloudflare Web Application Firewall is more affordable than other solutions."
"It starts at $20 and can easily go up to $200 monthly"
"It is not too pricey."
"The solution is expensive."
"Price-wise, I would say Akamai's pricing is competitive."
"Based on the billing discussions in the DevOps team, Akamai's cost does not seem to be a major thing. However, LOE is an issue. When it comes to support, we know that even all the competitors do this. For a 30-minute issue, they give us a LOE of one or two hours. That is a basic practice, but that is something we worry about."
"If you want quality, you have to pay the price. Its price is fair. Their account managers are also very helpful. They help you a lot with pricing even though they are working with Akamai."
"The solution is not expensive."
"The solution is expensive."
"It's more expensive than others, but the ROI is good for large-scale infrastructure."
"Its price is slightly high. Every company has a justification for the high price. Overall, it feels worth the money based on how the service has been structured, but we do negotiate it."
"Cost depends on the volume of traffic."
Information not available
report
Use our free recommendation engine to learn which Web Application Firewall (WAF) solutions are best for your needs.
904,748 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
17%
Financial Services Firm
9%
Comms Service Provider
9%
Manufacturing Company
7%
Financial Services Firm
18%
Comms Service Provider
8%
Performing Arts
7%
Manufacturing Company
6%
Construction Company
24%
Healthcare Company
11%
Financial Services Firm
10%
Manufacturing Company
8%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business16
Midsize Enterprise6
Large Enterprise6
By reviewers
Company SizeCount
Small Business4
Midsize Enterprise7
Large Enterprise18
No data available
 

Questions from the Community

What needs improvement with Cloudflare Web Application Firewall?
I don't see room for improvement to Cloudflare Web Application Firewall. One thing I don't know much about because we...
What is your primary use case for Cloudflare Web Application Firewall?
We are using Cloudflare Web Application Firewall's advanced reporting and analytics tools with their Zero Trust, so e...
What is your experience regarding pricing and costs for Akamai Web Application Protector?
The price is higher than others. It could be about 80% to 70% more expensive than other tools. So, it’s not just a sl...
What needs improvement with Akamai Web Application Protector?
There are no significant areas for improvement on the WAF side or for Akamai App and API Protector solution; they are...
What is your primary use case for Akamai Web Application Protector?
The main use case for Akamai App and API Protector is serving as the WAF, Web Application Firewall.
What needs improvement with Fortinet FortiAppSec Cloud?
Real-time traffic analysis has posed an issue for us because we did not see logs for legitimate traffic. A separate l...
What is your primary use case for Fortinet FortiAppSec Cloud?
Fortinet FortiAppSec Cloud is used as a WAF solution.
What advice do you have for others considering Fortinet FortiAppSec Cloud?
We are a customer running Fortinet FortiAppSec Cloud for both our organization and one for our customer. Three users ...
 

Also Known As

Cloudflare WAF
Akamai Web Application Protector, Akamai Kona Site Defender, Akamai Kona DDoS Defender
No data available
 

Overview

 

Sample Customers

crunchbase, udacity, marketo, okcupid, zendesk
Douglas Omaha Technology Commission, ZALORA, PrintPlanet
Information Not Available
Find out what your peers are saying about Akamai App and API Protector vs. Fortinet FortiAppSec Cloud and other solutions. Updated: June 2026.
904,748 professionals have used our research since 2012.