Arbor DDoS and F5 BIG-IP Advanced Firewall Manager compete in the DDoS protection and network security category. Arbor has the upper hand in user-friendliness and traffic visibility, while F5 AFM excels in integration with other F5 modules.
Features: Arbor DDoS includes predefined filters for easy attack mitigation, cloud signaling for coordination between on-premises and service provider protection, and real-time threat intelligence for proactive defense. Its hybrid approach provides multi-layer protection. F5 BIG-IP AFM offers unified network security by integrating with other F5 solutions, advanced WAF capabilities for robust application defense, and simplifies management with its modular integration.
Room for Improvement: Arbor DDoS users seek improvements in auto-mitigation features, scalability of hardware, and better third-party integration. They also suggest enhancements in reporting and reducing false positives. F5 AFM could benefit from a simpler user interface, improved reporting, and enhanced automation capabilities. Customers also desire more intuitive configuration logic and better integration with BIG-IQ.
Ease of Deployment and Customer Service: Arbor DDoS supports on-premises and hybrid cloud deployments and is known for its good technical support, though response times vary by region. F5 AFM also supports both deployment models, with responsive customer service noted for occasional delays. Both products offer strong technical expertise, with Arbor noted for deep product knowledge.
Pricing and ROI: Arbor DDoS is regarded as high-performing but expensive compared to competitors, with costs related to enterprise throughput and managed routers. Its clear licensing is a positive, though overall expenses are a concern. F5 AFM, while also costly, provides value through integrated features. Both deliver significant ROI by mitigating costly DDoS attacks and ensuring service uptime.
Support for Arbor DDoS deserves a rating of 10 because when there is a problem with implementation, the people I work with are the best.
The technical support team is very effective in resolving issues.
Although the team is good, they are not fast, and they lack the skills to manage dynamic attackers.
The responses are generally fast and effective.
The customer service is excellent, and I rate it ten out of ten.
This would enhance the knowledge about scalability options available for Arbor DDoS, making it more accessible and useful for users.
At all locations where there is an Internet gateway, there is Arbor TMS that needs to perform that protection role from DDoS attacks.
I find Arbor DDoS to be very scalable.
The solution is highly scalable, allowing me to add or remove nodes and manage traffic without interruption, which is essential for meeting application demands.
It is a very stable product.
Enhancing the handshakes between Arbor DDoS and third-party solutions is essential for obtaining better and real-time data that supports any organization’s support team effectively.
I would like to see an option to decrypt the traffic with Arbor DDoS, as some clients are interested in this, particularly for application layer attacks on port 443.
The licensing is subscription-based.
The appliance and features could be enhanced further, especially in terms of security.
Having advanced technology similar to other vendors like Palo Alto for zero-day attack prevention would be valuable.
From our sales department, they discuss that prices are very high.
For some customers, the cost is expensive, but for enterprises looking to protect their services, it is affordable.
The standard license is reasonably priced, but additional features like the WAF can be more expensive.
If considering a one-stop solution that provides load balancing, DNS security, AAA authentication, and firewalling on the same hardware, the cost is reasonable.
That is an attack over 10 gigabit per second, and if an attack enters the telecommunication network, that will be a disaster for their customer, their services, and so on.
The feature I find most valuable is the packet capture, which beautifully shows the communication between the client and the server, identifying potential malicious activity.
The most valuable feature was the ability to detect attacks within two seconds and gain visibility of all the traffic.
The solution provides behavioral analysis via AI to detect malicious traffic.
The most valuable features for me are stability, availability, and security, along with the ability to manage multiple features to secure my applications.
Arbor DDoS provides effective mitigation against DDoS attacks with a user-friendly interface, integrating cloud and on-premise solutions for real-time traffic control and reporting. It supports large traffic volumes without latency, making it ideal for protecting online infrastructure.
Known for its intuitive GUI and rapid response, Arbor DDoS defends against complex DDoS threats using AI-driven anomaly detection and traffic categorization. It offers packet capture, robust reporting, and deployment flexibility, helping users maintain network stability and performance. While improvements in auto-mitigation, interface modernization, and scalability are needed, its hybrid protection approach efficiently secures networks for service providers and enterprises.
What are the key features of Arbor DDoS?Internet Service Providers and managed service providers utilize Arbor DDoS to secure network infrastructure and service availability. It's implemented in government and finance sectors for safeguarding customer websites and managing server traffic thresholds. Organizations deploy Arbor DDoS both on-premise and via cloud for extensive network protection.
F5 BIG-IP Advanced Firewall Manager (AFM) is a high-performance, full-proxy network security solution designed to protect networks and data centers against incoming threats that enter the network. Built on F5’s industry-leading BIG-IP hardware and software platforms, BIG-IP AFM provides a scalable platform that delivers the flexible performance and control needed to mitigate aggressive distributed denial-of-service (DDoS) and protocol attacks before they overwhelm and degrade applications and infrastructure availability.
For service providers, BIG-IP AFM IPS does even more, protecting the network edge and performing traffic inspection and protocol adherence for prevalent service provider protocols such as SS7, Diameter, HTTP/2, GTP, SCTP and SIP traffic coming into the network over UDP, TCP, and SCTP.
We monitor all Distributed Denial-of-Service (DDoS) Protection reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
