No more typing reviews! Try our Samantha, our new voice AI agent.

AWS Shield vs Nexusguard DDoS Protection comparison

Sponsored
 

Comparison Buyer's Guide

Executive SummaryUpdated on Dec 5, 2024

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cloudflare
Sponsored
Ranking in Distributed Denial-of-Service (DDoS) Protection
2nd
Average Rating
8.6
Reviews Sentiment
7.0
Number of Reviews
79
Ranking in other categories
CDN (1st), WAN Optimization (4th), Web Application Firewall (WAF) (10th), Managed DNS (1st), Domain Name System (DNS) Security (5th), Cloud Security Posture Management (CSPM) (15th)
AWS Shield
Ranking in Distributed Denial-of-Service (DDoS) Protection
5th
Average Rating
8.6
Reviews Sentiment
6.8
Number of Reviews
11
Ranking in other categories
No ranking in other categories
Nexusguard DDoS Protection
Ranking in Distributed Denial-of-Service (DDoS) Protection
24th
Average Rating
9.4
Reviews Sentiment
7.7
Number of Reviews
5
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of July 2026, in the Distributed Denial-of-Service (DDoS) Protection category, the mindshare of Cloudflare is 12.9%, down from 19.1% compared to the previous year. The mindshare of AWS Shield is 2.9%, down from 6.3% compared to the previous year. The mindshare of Nexusguard DDoS Protection is 2.0%, up from 1.7% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Distributed Denial-of-Service (DDoS) Protection Mindshare Distribution
ProductMindshare (%)
Cloudflare12.9%
AWS Shield2.9%
Nexusguard DDoS Protection2.0%
Other82.2%
Distributed Denial-of-Service (DDoS) Protection
 

Featured Reviews

M.A. Faisal - PeerSpot reviewer
General Manager at bKash Limited
Advanced protection has secured critical web workloads and provides clear traffic visibility
From a security perspective, there remains a security loophole, as some browsers in the market can bypass the Turnstile solution, which requires approximately 40 seconds to do so. From a performance perspective, this is acceptable. We also tried Google reCAPTCHA, and that can also be bypassed. From a security perspective, I would say neither solution is completely secured. Regarding uptime, we have faced a couple of incidents due to Cloudflare in recent years, so I cannot say we receive 100% uptime for our region. We sometimes face challenges, including downtime and other issues. As a result, we are not receiving 100% uptime from Cloudflare's solution. Since most of our customers are in this region, we need alternatives. We need something more competitive than Cloudflare. Unfortunately, in Bangladesh, Cloudflare has three points of presence already, and we cannot find any other solution provider in Bangladesh as an alternative, which presents another challenge. Competitor solutions have more attack signatures, which ensure better security compared to Cloudflare's predefined configurations. Customers do not have options to modify any configuration parameters in Cloudflare, whereas other competitor solutions, such as F5 Distributed Cloud, allow customers to tune configurations according to their requirements. Cloudflare could improve in this area. Additionally, regarding visibility, Cloudflare has static visibility, but they could adopt dynamic graph features for their customers.
Pranav Telang - PeerSpot reviewer
DGM at Airtel Digital
Has enabled multi-layered threat mitigation but still lacks deeper visibility for advanced application attacks
AWS Shield has limited coverage as it only protects against common and high-volume network and transport layer attacks, such as SYN floods. It does not provide inherent protection against more sophisticated layer 7 attacks such as HTTP floods. In such cases, integration with WAF is necessary, which results in additional costs for customers. To protect layer 7, layer 4, and layer 3, customers must implement both solutions. The service also has difficulties with static detection thresholds, which may not be sensitive enough to detect smaller application-specific attacks. While AWS Shield is a key security service, AWS should enhance their expert support with 24/7 response for complex attacks, which is currently limited.
ShashikaKodikara - PeerSpot reviewer
Head of Cybersecurity at Technovage Solution
A solution requiring straightforward maintenance while remaining cost-effective compared to its competitors in the market
I am not in a position to speak about the areas where the solution needed improvement because I resigned during the implementation phase. At that time, the implementation was ongoing, and everything seemed to be going well. Using the solution, our team managed to transfer a couple of routers through a few areas. However, I believe the migration is still ongoing. Nonetheless, the first phase of the implementation was successful before my departure. There was a certain level of performance degradation in the solution, which I don't know if it can be tuned. This is because I was working for a short period on the solution. In my experience, it is an area that can be improved while also considering the stability and scalability aspects of the solution. If one wants to scale up, then one needs to change their plan. However, the thing is, one can always go for the larger scale based on one's anticipation of future traffic.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Cloudflare has many features."
"Smaller businesses have seen great ROI due to the low investment and strong performance."
"Cloudflare has positively impacted our organization by giving us flexibility to manage the DNS part, being quite fast, and allowing us to manage everything from a single dashboard, which is quite handy."
"We're using dynamic components to build flexible pages to create and manage Git merge requests for code and reviews."
"The web application firewall brought us good security and a view of the accesses/blocks of the entire domain and subdomain that were accessed both by region (country) and IPs."
"The solution is a great fit for customers who want unlimited bandwidth."
"For businesses that don't have a dedicated security team, I think it's a better product; it's more intuitive for people like us."
"Cloudflare makes it easier for me to handle and set up DNS for multiple users and multiple clients, and basically go in and access their account, make the changes they need, and it's a one-stop shop."
"If most of your internet presence from your application side is in AWS, AWS Shield is a great option."
"AWS Shield is aligned with the web application firewall (WAF), and they work seamlessly together, primarily working with Elastic Load Balancer, CloudFront, and Route 53 for CDN and DNS services protection."
"The solution's ease of use is the most valuable feature."
"We have integrated the tool with Active Directory. The most important feature is that it's transparent and doesn't degrade the performance of our solution. Additionally, it's easy to configure, which is crucial for us. It's easy to use and set up and stops attacks on our servers. We haven't encountered any attack problems because the solution stops them in real-time. AWS Shield specifically focuses on defending against denial-of-service attacks, making it a great solution for that type of threat."
"It is quite scalable, and we have not faced any issues with its scalability."
"The product is easy to use."
"The product has a good mechanism to analyze trends and trigger events."
"I am impressed with the product's multiple features like security."
"Filters can be customized depending on the characteristics of the attack traffic. This feature has made it easier for Nexusguard's SOC team to further isolate any specific attack that can't be blocked by pre-configured mitigation."
"Cloud Diversion is another good feature packaged with the whole solution. When attack traffic is detected, Cloud Diversion triggers to automatically route our prefix to Nexusguard’s scrubbing center, ensuring that all attack traffic is dropped in the shortest time possible."
"Nexusguard has exponentially improved the availability of our services because we don't have to worry much about any threats or DDoS attacks towards our services."
"Nexusguard has given us confidence that we are protected against any outside attacks."
"The managed service allows us to confidently rely on Nexusguard’s professional team to take relevant actions as and when required to make sure DDoS attacks are successfully mitigated, ensuring 100% uptime of our service."
"Based on the support received for implementation, I rate the solution's technical support a nine out of ten."
"The support team was helpful."
 

Cons

"The pricing could be improved."
"Regarding uptime, we have faced a couple of incidents due to Cloudflare in recent years, so I cannot say we receive 100% uptime for our region."
"The timing aspect can lead to it being considered overpriced. This is a particular concern we have with Cloudflare, as they may struggle with accurately detecting the client."
"An integrated SSO feature would be useful for Cloudflare DNS."
"Yes, there were a few times when some of their CDN nodes would fail, creating serious speed issues with the site without any warning or notification from their side."
"I would like to not need a separate server for non-www redirection under the CNAME setup option."
"One area of improvement is in the Access Rules. Hypothetically, if we wanted to block or challenge traffic outside of the United States, the only way to currently do that (as far as I know) is to enter every single country outside of the United States. That could be a labor intensive job. A solution could be to enable users to create a rule where traffic is only allowed within a certain country."
"We had to do a lot of digging and back-and-forth with technical support for specific use cases, and it might be helpful to have more screencasts or screenshots for common situations."
"The management of it is a bit hard. If you don't engineer it on the front side, it is hard to go back in and change it. It could be improved in terms of architecture requirements and then ongoing support requirements as a secondary component to it. People tend to set up things like this, and they just expect it to work without the care and feeding that needs to go back into it either from an application team or a network environment team."
"The network has been experiencing frustrating performance issues today, which is not typical for Nigeria."
"AWS Shield has limited coverage as it only protects against common and high-volume network and transport layer attacks, such as SYN floods."
"There is an area for improvement regarding health checks. AWS Shield does not come with its own health check functionality."
"The management of it is a bit hard. If you don't engineer it on the front side, it is hard to go back in and change it."
"The product is expensive."
"Perhaps the time required to detect anomalies can be reduced. Presently, it takes some time to determine whether a situation is normal or abnormal."
"AWS Shield Standard requires improvement, particularly regarding its dashboard since it currently provides limited coverage against comprehensive DDoS attacks."
"One of the features that should be added to the next release is report generation."
"One thing that we would like to improve from them is to provide more training to SOC team for them to have a deep understanding of the solution so that they would always be ready to answer anything without the need to escalate queries to senior personnel."
"There was a certain level of performance degradation in the solution, which I don't know if it can be tuned...In my experience, it is an area that can be improved while also considering the stability and scalability aspects of the solution."
"The solution must provide features for the post-processing of the traffic type and the traffic quality."
"One of the features that should be added to the next release is report generation. Currently, reports can be downloaded every month and are only available at the beginning of each month. It would be nice to generate the reports based on specific dates that we prefer and not have to wait until the next month for the current month’s report."
"The mitigation scope of Origin Protection is not fully efficient as there could be delays in activating the countermeasures."
 

Pricing and Cost Advice

"I think the pricing is competitive. I think as far as licensing is concerned it's pretty straightforward because it's based on domain. It's just that sometimes domains could be tricky with some customers."
"I believe their performance has improved, but I'd like to refrain from discussing the pricing aspect related to the cloud. The pricing, in my opinion, could be simplified, and I think they should consider reevaluating the pricing for support, as it can be quite high. At times, this cost can make it challenging to choose CARFAGuard or opt for the support."
"The cost primarily depends on the size of the organization."
"I give the price a five out of ten."
"So far I use free tier and happy with it. You can subscribe to business package if needed."
"The solution is expensive when compared to other products but offers unlimited bandwidth."
"A free version of the solution is available."
"The pricing for the service is reasonable, neither excessively cheap nor prohibitively expensive. It aligns well with the value of their solution."
"The cost depends on traffic each month, so on average, it costs us between US$200 and US$300 per month."
"We pay $3000 per month for the solution."
"The tool's pricing is good."
"The tool is cheap."
"It depends on your subscription level and the volume that you're spending with AWS. So, it is very relative to the consumption alignment in your subscription level. It is a well-constructed, scalable pricing option, but it is relative to how much you're spending on AWS. Because the more you spend, typically, the more you get off on services like this. I find it to be comparable to other solutions."
"On a scale of one to ten, where one represents a cheap option, and ten represents an expensive option, I would rate the solution a seven in terms of cost."
report
Use our free recommendation engine to learn which Distributed Denial-of-Service (DDoS) Protection solutions are best for your needs.
904,016 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Financial Services Firm
10%
Comms Service Provider
10%
Manufacturing Company
8%
Computer Software Company
8%
Comms Service Provider
17%
Computer Software Company
9%
Financial Services Firm
8%
Construction Company
7%
Comms Service Provider
45%
Media Company
11%
Financial Services Firm
9%
University
4%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business46
Midsize Enterprise11
Large Enterprise26
By reviewers
Company SizeCount
Small Business3
Midsize Enterprise1
Large Enterprise7
No data available
 

Questions from the Community

Which is the best DDoS protection solution for a big ISP for monitoring and mitigating?
Cloudflare. We are moving from Akamai prolexic to Cloudflare. Cloudflare anycast network outperforms Akamai static GR...
Which would you choose - Cloudflare DNS or Quad9?
Cloudflare DNS is a very fast, very reliable public DNS resolver. It is an enterprise-grade authoritative DNS service...
What is your experience regarding pricing and costs for Cloudflare DNS?
The pricing, setup cost, and licensing for Cloudflare are a bit on the higher side overall.
What is your experience regarding pricing and costs for AWS Shield?
The pricing structure for AWS Shield is fair, yet it depends on the specific protections chosen. Enabling Shield Adva...
What needs improvement with AWS Shield?
Services always benefit from improvements, including AWS Shield. With respect to the Web Application Firewall, curren...
What is your primary use case for AWS Shield?
What do you use it for? How do you use it?
Ask a question
Earn 20 points
 

Also Known As

Cloudflare DNS
No data available
No data available
 

Overview

 

Sample Customers

Trusted by over 9,000,000 Internet Applications and APIs, including Nasdaq, Zendesk, Crunchbase, Steve Madden, OkCupid, Cisco, Quizlet, Discord and more.
netflix, dow jones, mapbox, pearson, rovio, youview, moviestar planet, asurion, payplug, hour of code
21st Century Technologies, Netpluz, REDtone, SNOC, StarHub, aamra
Find out what your peers are saying about AWS Shield vs. Nexusguard DDoS Protection and other solutions. Updated: June 2026.
904,016 professionals have used our research since 2012.