AWS Shield vs Fortinet FortiAppSec Cloud comparison

Amazon Web Services (AWS) and Fortinet are both solutions in the Distributed Denial-of-Service (DDoS) Protection category. Amazon Web Services (AWS) is ranked #5 with an average rating of 8.7, while Fortinet is ranked #37. Additionally, 100% of Amazon Web Services (AWS) users are willing to recommend the solution, compared to 100% of Fortinet users who would recommend it.

Comparison Buyer's Guide

Download the report

Executive Summary

We performed a comparison between AWS Shield and Fortinet FortiAppSec Cloud based on real PeerSpot user reviews.

Find out what your peers are saying about Radware, Cloudflare, NETSCOUT and others in Distributed Denial-of-Service (DDoS) Protection.

To learn more, read our detailed Distributed Denial-of-Service (DDoS) Protection Report (Updated: March 2026).

Buyer's Guide

Distributed Denial-of-Service (DDoS) Protection

March 2026

Download the complete report

Helped 885,311 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Categories and Ranking

Cloudflare

Featured Reviews

M.A. Faisal

General Manager at bKash Limited

Advanced protection has secured critical web workloads and provides clear traffic visibility

From a security perspective, there remains a security loophole, as some browsers in the market can bypass the Turnstile solution, which requires approximately 40 seconds to do so. From a performance perspective, this is acceptable. We also tried Google reCAPTCHA, and that can also be bypassed. From a security perspective, I would say neither solution is completely secured. Regarding uptime, we have faced a couple of incidents due to Cloudflare in recent years, so I cannot say we receive 100% uptime for our region. We sometimes face challenges, including downtime and other issues. As a result, we are not receiving 100% uptime from Cloudflare's solution. Since most of our customers are in this region, we need alternatives. We need something more competitive than Cloudflare. Unfortunately, in Bangladesh, Cloudflare has three points of presence already, and we cannot find any other solution provider in Bangladesh as an alternative, which presents another challenge. Competitor solutions have more attack signatures, which ensure better security compared to Cloudflare's predefined configurations. Customers do not have options to modify any configuration parameters in Cloudflare, whereas other competitor solutions, such as F5 Distributed Cloud, allow customers to tune configurations according to their requirements. Cloudflare could improve in this area. Additionally, regarding visibility, Cloudflare has static visibility, but they could adopt dynamic graph features for their customers.

Read full review

reviewer2767527

Lead Architect at a comms service provider with 1,001-5,000 employees

Has enabled multi-layered threat mitigation but still lacks deeper visibility for advanced application attacks

AWS Shield has limited coverage as it only protects against common and high-volume network and transport layer attacks, such as SYN floods. It does not provide inherent protection against more sophisticated layer 7 attacks such as HTTP floods. In such cases, integration with WAF is necessary, which results in additional costs for customers. To protect layer 7, layer 4, and layer 3, customers must implement both solutions. The service also has difficulties with static detection thresholds, which may not be sensitive enough to detect smaller application-specific attacks. While AWS Shield is a key security service, AWS should enhance their expert support with 24/7 response for complex attacks, which is currently limited.

Read full review

reviewer2812593

CIO at a financial services firm with 51-200 employees

Advanced threat protection has reduced financial risk and improves application security visibility

The issue I have with Fortinet FortiAppSec Cloud is that the real-time analysis is not robust; I am unable to see all the logs of everything that happened, including what is passive. It only logs when there are suspicious activities, which means if something is not considered suspicious by Fortinet, I will not see the full picture. That is a disadvantage because it will not log unless it identifies an IOC or attacks, meaning I cannot see traffic information in a way that helps build more intelligence. The biggest issue I have with Fortinet FortiAppSec Cloud is that the logging is not as extensive as I would prefer. For instance, if there was an issue two days ago and Fortinet FortiAppSec Cloud did not mark it as a concern, I will not see any information about that, making it challenging to explain to customers if their request did not reach us. It hampers visibility from an API perspective. They need to enhance monitoring and logging to be more extensive and capture even passive activities. The AI integration in Fortinet FortiAppSec Cloud is still new. The generative models are good, but there is much work left to improve. It is not as intelligent as it could be; thus, enhancements around the AI co-assistant would be beneficial. Additionally, logging and monitoring need improvement as I can capture traffic and investigate offline on my Fortinet firewall, including full traffic view, but Fortinet FortiAppSec Cloud currently focuses only on security concerns, which does not give the complete picture.

Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros

"The aggressive caching and DDOS mitigation are the most valuable features offered by Cloudflare."

"Generally, I am satisfied with this product."

"The solution provides good load balancing and protection against DDoS attacks."

"The technical support is good."

"If you don't want to spend too much time hosting your own DNS server or managing the domain, Cloudflare is a great way to rapidly get websites and services online."

"Cloudflare is very straightforward."

"The setup and configuration is also easy to perform and their support is excellent."

"The simplicity of the overall dashboard makes it a great product for a user like me who has less understanding of the internet than a developer or other more technical people. It gives me peace of mind. I also love the easy customization of the Page Rules."

More Cloudflare pros

"I am impressed with the product's multiple features like security."

"It is integrated with AWS. So, it gives you a good first step."

"The product is easy to use."

"The solution operates smoothly at its baseline level, and we do not encounter any issues at that level."

"The product has a good mechanism to analyze trends and trigger events."

"We have integrated the tool with Active Directory. The most important feature is that it's transparent and doesn't degrade the performance of our solution. Additionally, it's easy to configure, which is crucial for us. It's easy to use and set up and stops attacks on our servers. We haven't encountered any attack problems because the solution stops them in real-time. AWS Shield specifically focuses on defending against denial-of-service attacks, making it a great solution for that type of threat."

"I recommend AWS Shield because it has proven helpful in tracking DDoS attacks within both my past and present environments, and without AWS Shield, a business could face potential losses, as this tool helps in identifying and mitigating fake traffic that disrupts applications, ultimately supporting business continuity."

"If most of your internet presence from your application side is in AWS, AWS Shield is a great option."

More AWS Shield pros

"We have seen a reduction in incidents and a good return on investment from Fortinet FortiAppSec Cloud, with our return on investment around 60%."

"My favorite Fortinet device is the FortiGate next-gen firewall itself; it is a complete suite with intrusion prevention, intrusion detection, anti-malware, anti-DDoS, and SD-WAN functionalities."

Cons

"The solution could use more analytics on the backend to give us more insights into everything."

"The solution could work at being less expensive. It costs a lot to use it."

"The solution could be more user-friendly."

"In the last two years, there has been a certain amount of downtime when using the VDM."

"With CDN loads, sometimes we get an error that the host server is unavailable when the connection between CloudFlare and the server timed out."

"It looks like they don't support as many TLDs as other registrars, but since they are very new as a registrar, I expect this may improve soon."

"Sometimes their more advanced caching tools can cause higher first-byte times and problems with JavaScript."

"We had to do a lot of digging and back-and-forth with technical support for specific use cases, and it might be helpful to have more screencasts or screenshots for common situations."

More Cloudflare cons

"We end up having to pay extra for features that AWS adds that we don't need."

"The product needs to improve its logs and reports to make it read better."

"The management of it is a bit hard. If you don't engineer it on the front side, it is hard to go back in and change it."

"Perhaps the time required to detect anomalies can be reduced."

"AWS Shield Standard requires improvement, particularly regarding its dashboard since it currently provides limited coverage against comprehensive DDoS attacks."

"The product is expensive."

"The management of it is a bit hard. If you don't engineer it on the front side, it is hard to go back in and change it. It could be improved in terms of architecture requirements and then ongoing support requirements as a secondary component to it. People tend to set up things like this, and they just expect it to work without the care and feeding that needs to go back into it either from an application team or a network environment team."

"The time taken to detect anomalies must be reduced."

More AWS Shield cons

"Real-time traffic analysis has posed an issue for us because we did not see logs for legitimate traffic."

"The issue I have with Fortinet FortiAppSec Cloud is that the real-time analysis is not robust; I am unable to see all the logs of everything that happened, including what is passive."

Pricing and Cost Advice

"A free version of the solution is available."

"We don't have any issues with the price."

"The price of the solution is expensive."

"When you compare Cloudflare DNS to other solutions, such as Akamai, the price is reasonable."

"It's a premium model. You can start at zero and work your way up to the enterprise model, which has a very high pricing level."

"The product's pricing is minimal compared to other products."

"We are using the free version."

"The cost primarily depends on the size of the organization."

More Cloudflare pricing and cost advice

"The cost depends on traffic each month, so on average, it costs us between US$200 and US$300 per month."

"The tool's pricing is good."

"The tool is cheap."

"It depends on your subscription level and the volume that you're spending with AWS. So, it is very relative to the consumption alignment in your subscription level. It is a well-constructed, scalable pricing option, but it is relative to how much you're spending on AWS. Because the more you spend, typically, the more you get off on services like this. I find it to be comparable to other solutions."

"We pay $3000 per month for the solution."

Information not available

See which vendors are best for you

Use our free recommendation engine to learn which Distributed Denial-of-Service (DDoS) Protection solutions are best for your needs.

See recommendations

885,311 professionals have used our research since 2012.

Top Industries

By visitors reading reviews

Financial Services Firm

10%

Comms Service Provider

10%

Computer Software Company

Manufacturing Company

Comms Service Provider

12%

Computer Software Company

10%

Financial Services Firm

Insurance Company

Construction Company

23%

Healthcare Company

10%

Financial Services Firm

10%

Manufacturing Company

10%

Company Size

By reviewers

Large Enterprise

Midsize Enterprise

Small Business

By reviewers
Company Size	Count
Small Business	46
Midsize Enterprise	8
Large Enterprise	26

By reviewers
Company Size	Count
Small Business	3
Midsize Enterprise	1
Large Enterprise	7

No data available

Questions from the Community

Which is the best DDoS protection solution for a big ISP for monitoring and mitigating?

Cloudflare. We are moving from Akamai prolexic to Cloudflare. Cloudflare anycast network outperforms Akamai static GR...

See all answers

Which would you choose - Cloudflare DNS or Quad9?

Cloudflare DNS is a very fast, very reliable public DNS resolver. It is an enterprise-grade authoritative DNS service...

See all answers

What do you like most about Cloudflare?

Cloudflare offers CDN and DDoS protection. We have the front end, API, and database in how you structure applications.

See all answers

What do you like most about AWS Shield?

We have integrated the tool with Active Directory. The most important feature is that it's transparent and doesn't de...

See all answers

What is your experience regarding pricing and costs for AWS Shield?

The pricing structure for AWS Shield is fair, yet it depends on the specific protections chosen. Enabling Shield Adva...

See all answers

What needs improvement with AWS Shield?

Services always benefit from improvements, including AWS Shield. With respect to the Web Application Firewall, curren...

See all answers

Ask a question

Earn 20 points

Comparisons

Quad9 vs Cloudflare

Compared 43% of the time

Akamai vs Cloudflare

Compared 4% of the time

Imperva Application Security Platform vs Cloudflare

Compared 4% of the time

Azure Front Door vs Cloudflare

Compared 2% of the time

Myra Security DDoS Protection vs Cloudflare

Compared 2% of the time

More Cloudflare Competitors

Azure DDoS Protection vs AWS Shield

Compared 15% of the time

Cloudflare One vs AWS Shield

Compared 14% of the time

Radware DDoS vs AWS Shield

Compared 10% of the time

Akamai App and API Protector vs AWS Shield

Compared 8% of the time

Imperva Application Security Platform vs AWS Shield

Compared 6% of the time

More AWS Shield Competitors

Fortinet FortiWeb vs Fortinet FortiAppSec Cloud

Compared 19% of the time

OpenText Dynamic Application Security Testing vs Fortinet FortiAppSec Cloud

Compared 10% of the time

Cloudflare Web Application Firewall vs Fortinet FortiAppSec Cloud

Compared 10% of the time

Aryaka Unified SASE Platform vs Fortinet FortiAppSec Cloud

Compared 10% of the time

Akamai App and API Protector vs Fortinet FortiAppSec Cloud

Compared 7% of the time

More Fortinet FortiAppSec Cloud Competitors

Product Reports

Buyer's Guide

Cloudflare

March 2026

Download Cloudflare product report

Buyer's Guide

AWS Shield

March 2026

Download AWS Shield product report

Buyer's Guide

Web Application Firewall (WAF)

March 2026

Download Fortinet FortiAppSec Cloud product report

Also Known As

Cloudflare DNS

No data available

Overview

Cloudflare enhances web performance and security with features like CDN caching and DDoS mitigation while providing easy DNS management and intuitive setup through its user-friendly dashboard.

Cloudflare is recognized for its comprehensive web security and performance solutions. Speed improvements are achieved through caching mechanisms and DDoS protection, combining ease of DNS management with flexible page rules. The robust analytics and threat insight tools provide valuable data, assisted by a user-friendly dashboard allowing quick setup and configuration. An API offers dynamic DNS settings ensuring low latency and high performance across the globe.

What are Cloudflare's key features?

CDN Caching: Enhances website speed through content delivery network caching.
Web Application Firewall: Protects websites from online threats.
DDoS Mitigation: Shields against distributed denial-of-service attacks.
DNS Management: Offers easy-to-use and flexible domain management.
SSL Certificates: Ensures secure connections between users and servers.
Analytics: Provides insights with robust analytics tools.

What benefits and ROI should users evaluate?

Enhanced Security: Strengthening web security with DDoS and firewall protection.
Speed Improvement: Faster content delivery with CDN caching.
Operational Simplicity: Simplifies website optimization through a user-friendly interface.
Scalable Solutions: Scales with global reach, lowering latency for improved performance.
Cost Efficiency: Offers layers of valuable functionality with pricing options.

Cloudflare finds utility across industries for DNS management and defense mechanisms. Its content delivery network assures fast content distribution and fortified security. Businesses integrate features like web application firewalls, load balancing, end-to-end SSL, and zero trust to protect websites from cyber threats while ensuring resilience and reliable performance.

Cloudflare

AWS Shield is a managed Distributed Denial of Service (DDoS) protection service that safeguards applications running on AWS. AWS Shield provides always-on detection and automatic inline mitigations that minimize application downtime and latency, so there is no need to engage AWS Support to benefit from DDoS protection.

Amazon Web Services (AWS)

Fortinet FortiAppSec Cloud is a comprehensive security offering, designed to protect applications across cloud environments. It focuses on providing advanced security measures that cater to the needs of enterprises looking for robust application protection.

Fortinet FortiAppSec Cloud leverages an array of sophisticated technologies to offer top-tier security for cloud applications. It safeguards against threats by implementing features such as cutting-edge machine learning models and real-time threat intelligence. This ensures data integrity and application availability, crucial for maintaining normal business operations. By integrating seamlessly into cloud environments, Fortinet FortiAppSec Cloud offers a user-friendly experience that does not compromise on security.

What are the key features of Fortinet FortiAppSec Cloud?

Machine Learning Models: Employs AI for threat detection and prevention, enhancing security efficiency.
Real-Time Threat Intelligence: Offers timely updates to combat emerging threats.
Seamless Cloud Integration: Ensures easy deployment and operation within cloud infrastructures.
Scalability: Adapts to growing business needs, providing consistent security coverage.

What benefits should users expect when evaluating Fortinet FortiAppSec Cloud?

Cost Efficiency: Reduces expenses by preventing security breaches and minimizing downtime.
Enhanced Security Posture: Provides improved protection, reducing vulnerability exposure.
Operational Efficiency: Streamlines management, allowing IT teams to focus on strategic tasks.
Future-Proof Investment: Offers scalable security to meet evolving business demands.

Fortinet FortiAppSec Cloud is widely implemented across industries such as finance, healthcare, and e-commerce. Organizations in these fields benefit from its ability to secure sensitive data and maintain compliance with rigorous industry standards. Its adaptive design ensures that businesses can provide secure and reliable services to their customers at all times.

Fortinet

Sample Customers

Trusted by over 9,000,000 Internet Applications and APIs, including Nasdaq, Zendesk, Crunchbase, Steve Madden, OkCupid, Cisco, Quizlet, Discord and more.

netflix, dow jones, mapbox, pearson, rovio, youview, moviestar planet, asurion, payplug, hour of code

Information Not Available

Buyer's Guide

Distributed Denial-of-Service (DDoS) Protection

March 2026

Download Free Report

Find out what your peers are saying about Radware, Cloudflare, NETSCOUT and others in Distributed Denial-of-Service (DDoS) Protection. Updated: March 2026.

DOWNLOAD NOW

885,311 professionals have used our research since 2012.

See our list of best Distributed Denial-of-Service (DDoS) Protection vendors.

We monitor all Distributed Denial-of-Service (DDoS) Protection reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.