"As a basic WAF, it's better than nothing. So if you need something simple out of the box with default features, AWS WAF is good."
"The access instruction feature is the most valuable. This is what we use the most."
"The most valuable features of AWS WAF are its cloud-native and on-demand."
"The solution is stable."
"This product supplies options for web security for applications accessing sensitive information."
"AWS has flexibility in terms of WAF rules."
"Its best feature is that it is on the cloud and does not require local hardware resources."
"Stable and scalable web application firewall. Setting it up is straightforward."
"From what I've seen so far, there are no negatives to report as of yet"
"The DDoS protection is the most valuable aspect of the solution."
"New and innovative way to protect the client's data."
"It's very user-friendly."
"There are key things that are used for our enterprise customers, such as Lambda and DNS."
"I would like to see it more tightly integrated with other AWS services."
"We haven't faced any problems with the solution."
"The technical support does not respond to bugs in the coding of the product."
"We don't have much control over blocking, because the WAF is managed by AWS."
"When users choose the free service, there isn't great support available to them."
"Technical support for AWS WAF needs improvement."
"While the complexity of the installation can vary from one service to another, overall, I would say that it and the configuration and navigation are somewhat complex."
"The serverless product from AWS WAF could be improved. For example, they have only one serverless series, Lambda, but they should extend and improve it. Additionally, the firewall rules are not very easy to configure."
"Technical support is lacking."
"There are some issues with the CDN services."
"The solution could work at being less expensive. It costs a lot to use it."
"Latencies are always a problem."
"Although I think it's quite good, it doesn't provide me with all the features I would expect to have if I were using Imperva."
AWS WAF is a web application firewall that helps protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources. AWS WAF gives you control over which traffic to allow or block to your web applications by defining customizable web security rules. You can use AWS WAF to create custom rules that block common attack patterns, such as SQL injection or cross-site scripting, and rules that are designed for your specific application. New rules can be deployed within minutes, letting you respond quickly to changing traffic patterns. Also, AWS WAF includes a full-featured API that you can use to automate the creation, deployment, and maintenance of web security rules.
Cloudflare is the leading performance and security company helping to build a better Internet. Today the company runs one of the world’s largest networks that powers more than 9 million Internet applications. More than 10 trillion Internet requests flow through Cloudflare’s network each month, accounting for nearly 10% of all Internet requests globally.
Cloudflare protects and accelerates any Internet application online without adding hardware, installing software, or changing a line of code. Internet properties powered by Cloudflare have all web traffic routed through its intelligent global network, which gets smarter with each new site added. As a result, they see significant improvement in performance and a decrease in spam and other attacks.
AWS WAF is ranked 4th in Web Application Firewall (WAF) with 12 reviews while Cloudflare is ranked 3rd in Distributed Denial of Service (DDOS) Protection with 6 reviews. AWS WAF is rated 7.6, while Cloudflare is rated 8.0. The top reviewer of AWS WAF writes "Use this product to make it possible to deploy web applications securely". On the other hand, the top reviewer of Cloudflare writes "Robust, secure and innovative; technical support needs to be improved". AWS WAF is most compared with Microsoft Azure Application Gateway, Imperva Web Application Firewall, Azure Web Application Firewall, Cloudflare Web Application Firewall and Fortinet FortiWeb, whereas Cloudflare is most compared with Imperva DDoS, Azure Front Door, Microsoft Azure Application Gateway, Palo Alto Networks WildFire and Akamai. See our AWS WAF vs. Cloudflare report.
We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.