Try our new research platform with insights from 80,000+ expert users

Barracuda Web Application Firewall vs HAProxy vs Imperva DDoS comparison

The compared Barracuda Networks and HAProxy solutions aren't in the same category. Barracuda Networks is ranked #17 in WAF , with an average rating of 8.4, and holds a 2.0% mindshare in the category. HAProxy is ranked #4 in ADC , with an average rating of 7.6, and holds a 12.4% mindshare. Additionally, 94% of Barracuda Networks users are willing to recommend the solution, compared to 91% of HAProxy users who would recommend it.
Barracuda Web Application F...
Read 44 Barracuda Web Application Firewall reviews
  • 1,583 Views
  • 801 Comparison Views
94% willing to recommend
HAProxy
Read 42 HAProxy reviews
  • 6,168 Views
  • 3,972 Comparison Views
91% willing to recommend
Imperva DDoS
Read 78 Imperva DDoS reviews
  • 1,248 Views
  • 747 Comparison Views
94% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive Summary
We performed a comparison between Barracuda Web Application Firewall, HAProxy, and Imperva DDoS based on real PeerSpot user reviews.

Find out what your peers are saying about Amazon Web Services (AWS), F5, Microsoft and others in Web Application Firewall (WAF).

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed Web Application Firewall (WAF) Report (Updated: June 2025).
Buyer's Guide
Web Application Firewall (WAF)
June 2025
Download the complete report
Helped 857,162 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Mindshare comparison

Web Application Firewall (WAF)
Application Delivery Controllers (ADC)
Distributed Denial-of-Service (DDoS) Protection
 

Featured Reviews

Anne-Aimee Wollerich - PeerSpot reviewer
Managing bot traffic effectively enhances usability for non-technical users
Barracuda Web Application Firewall ( /products/barracuda-web-application-firewall-reviews ) lacks some of the more specified and structured features offered by solutions like Tenable. Although Tenable is more expensive and less easily deployable, its features are more deepened and chiseled, particularly for IT personnel. For example, Tenable provides more comprehensive dark web scanning capabilities, which Barracuda could improve upon.
Read full review
Kaushlendra Singh - PeerSpot reviewer
Used for load balancing, but its dashboard and reporting could be improved
We use the solution for load balancing The solution's implementation and troubleshooting are not easy. The solution's dashboards and reports could be improved. I have been using HAProxy for 12 years. We didn’t face any issues with the solution’s stability. I rate the solution’s stability an…
Read full review
DerrickAkankwasa - PeerSpot reviewer
Provide DDoS protection and better security at effective rate
It is expanding its number of data centers for scrubbing traffic. Currently, there is only one POP for cleaning in South Africa. They might add another POP in North Africa, possibly in Nigeria or Egypt. Latency concerns customers, especially in regions like East and West Africa, where traffic has to travel to South Africa before returning. Increasing the number of POPs across the continent would help address these latency issues and improve overall service. While the platform is already quite strong, there’s always room for improvement, especially in keeping up with emerging trends and new types of attacks. Enhancing security capabilities could be beneficial. Integrating more advanced AI features could significantly improve its effectiveness and help customers leverage these tools more effectively. It would be great to see more focus on AI integration to handle and analyze data more efficiently.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"We run it with no downtime, because it has good support."
"The most valuable feature of this solution is the simplicity of configuration."
"Some of the most valuable features are the ease of deployment, the Barracuda support, the easy-to-use console, and the granularity of the reports."
"The most valuable feature is the ease of use and the signature base."
"The product's advanced bot and threat protection capabilities are valuable."
"We only need one subscription to be protected against both active DDoS and offline DDoS attacks."
"The updating and signature features are my primary use case for the solution. These features are beneficial to my organization."
"This product gives us visibility into what is going on in two servers, including connections and sessions, real-time alerts, very good reporting, and KPIs. It makes managing security of a critical server very easy, with a friendly GUI."
More Barracuda Web Application Firewall pros
"It improves our scalability and responsiveness services to meet our demanding customer requirements."
"I can't speak to all of the HAProxy features because we don't use them all, but load balancing is very good."
"The features I find valuable in this solution are session control which automatically disconnects users that forget to log off, and the ability to write rules to either allow or block certain file requests."
"Stability is number one."
"Load balancing is valuable, and we are also using the WAF feature."
"The most valuable thing for me is TCP/IP Layer 4 stuff you can do with HAProxy. You can go down to the protocol level and make decisions on something."
"The feature that I have found the most valuable is that it works for my use case of application load balancing. I'm using it for PeerSense, and it's easy enough for PeerSense."
"The anti-DDOS PacketShield filtering solution (embedded in the physical appliances) as well as the BGP route injection are great features and heavily used."
More HAProxy pros
"IncapRules is one of the most valuable features, as you can create your own security and access control rules on top of your security policy. Using IncapRules we were able to easily block Layer 7 DDoS attacks several times."
"Integration with IBM AS/400 and Db2 is okay."
"Simplifies putting everything in code."
"Technical support was very helpful."
"​Technical support provides good, quick responses."
"Setup was straightforward, very simple. I only entered the domain and Incapsula returned the DNS data that I needed to change for the protection to be configured."
"The solution has a very good interface."
"It is a stable solution."
More Imperva DDoS pros
 

Cons

"The solution needs to leverage some additional features to a broader scale of software-defined networks."
"There's potential for improvement in the platform's CMS integration."
"There are issues when upgrading firewalls and we experience different issues across customers."
"They could improve their performance, support, and their upgrades. Their updates used to be good. Their improvements were right on the money but nowadays, the updates are minor."
"An area for improvement in Barracuda Web Application Firewall is attack identification. Other banks identified attacks and tracked logs that the solution wasn't able to identify because of its ready-made rules pre-deployed by the vendor. My organization raised this issue with the technical support team. Another area to improve in Barracuda Web Application Firewall is its service desk. The team resorted to stonewalling because they couldn't accept that a feature was missing in the solution, and it was only after a lot of drilling down that the service desk team accepted that, and would be adding that feature in the future. My organization had to submit a report to the Reserve Bank of India with information on the logs identified and the attacks that happened, and that there was a failure on the part of the Barracuda Web Application Firewall. The Reserve Bank of India conducts a tri-monthly cyber risk audit in all Indian banks. Even smaller banks identified and caught attacks that my organization wasn't able to do, so I was looking into other solutions that competitor banks could be using because Barracuda Web Application Firewall failed to identify some of the attacks."
"I would like to see an improved capacity to store logs so that they will be available for a longer time."
"The incident reporting needs to be improved."
"They should improve their features, so they easily compare to the competition."
More Barracuda Web Application Firewall cons
"Dynamic update API. More things should be possible to be configured during runtime."
"HAProxy is very weak in the logging and monitoring part and requires improvement."
"The basic clustering is not usable in our very specific setup. The clustering is mainly a configuration replication and is great in a case of active-passive usage. In the case of an active-active (or with more than two nodes) where the configuration is not fully identical, it cannot be used as-is."
"There are three main areas to improve: 1) Make remote management more modern by adding API. 2) Propose a general HA ​solution for HAProxy (no I'm using keepalived for this). 3) Thread option should be a bit more stable."
"​It needs proper HTTP/2 support.​"
"Improving the documentation with multiple examples and scenarios would be beneficial. Most users encounter similar situations, so having a variety of scenarios readily available on the tool's website would be helpful. For instance, if I were part of the HAProxy team, I'd create a webpage with different scenarios and provide files for each scenario. This way, users wouldn't have to start from scratch every time."
"Pricing, monitoring, and reports can be improved."
"The configuration should be more friendly, perhaps with a Web interface. For example, I work with the ClusterControl product for Severalnines, and we have a Web interface to deploy the HAProxy load-balancer."
More HAProxy cons
"I am not sure if this application has a policy where you can create your custom policy and run it as our firewall. We should have some ability to also create some custom policy, then run it as a firewall."
"We had an issue when securing the web applications for DDoS protection."
"The solution needs to improve Integration with third parties for their on-prem deployment models. The integration is not that good yet."
"The salespeople tend to exaggerate its capabilities, which can cost you money if you don't verify the information."
"The product could use a broader scope in the area of policies."
"We would like them to hire people in Sweden because it's quite hard when people are sitting in the UK or Belgium because some of the customers really want them to be local."
"I miss being able to integrate the dashboard with other BI tools we are using. We have to export and import data to be able to present it, and doing so is a lot of work."
"Pricing can be improved, as it is quite expensive."
More Imperva DDoS cons
 

Pricing and Cost Advice

"They have competitive pricing."
"For small companies, the price is very expensive because the WAF is an enterprise-level application, not intended for smaller businesses. In my opinion, the price is right for enterprise-level use."
"The price of this solution is okay."
"The product is inexpensive."
"The pricing is reasonable."
"The solution is based on a licensing model and might be $360 for the hybrid version."
"Barracuda costs us $8,000 per year. Barracuda costs $20,000 for a full subscription, when you try to protect multi-site infrastructure, in different geographical zones and for different data centers. If you have only one site, Barracuda will be cheaper."
"The product pricing was competitive for the value it offers regarding security features."
More Barracuda Web Application Firewall pricing and cost advice
"Very good value for the money. One of the simplest licensing schemes in this category of products."
"We are using HAProxy as an open-source."
"The tool is open-source."
"It is free of cost."
"When it comes to pricing HAProxy is free."
"HAProxy is free software. There are optional paid products (support/appliances)."
"The product is open source."
"HAProxy is free in the initial offer. However, pricing can be improved."
More HAProxy pricing and cost advice
"On a scale from one to ten, where one is cheap and ten is expensive, I rate the solution's pricing a five out of ten."
"Pricing could be more competitive."
"The data packages are higher than our needs so we end up paying for data that we don't use."
"It is expensive."
"The cost is somewhere around $10,000 a site. For every site, you pay individually. For every DNS entry, you have you pay."
"It is not expensive compared to the other similar solutions in this category."
"The solution's price is high for small companies."
"Imperva charges us based on bandwidth, which is better than other vendors that charge us according to data transfer."
More Imperva DDoS pricing and cost advice
report
See which vendors are best for you
Use our free recommendation engine to learn which Web Application Firewall (WAF) solutions are best for your needs.
See recommendations
857,162 professionals have used our research since 2012.
 

Comparison Review

it_user68487 - PeerSpot reviewer
Nov 6, 2013
CloudFlare vs Incapsula: Web Application Firewall
CloudFlare vs Incapsula: Round 2 Web Application Firewall Comparative Penetration Testing Analysis Report v1.0 Summary This document contains the results of a second comparative penetration test conducted by a team of security specialists at Zero Science Lab against two cloud-based Web…
Read full review
 

Top Industries

By visitors reading reviews
Computer Software Company
20%
Financial Services Firm
10%
Educational Organization
6%
Government
6%
Computer Software Company
19%
Financial Services Firm
11%
Government
8%
Manufacturing Company
7%
Financial Services Firm
16%
Computer Software Company
14%
Manufacturing Company
8%
Government
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
 

Questions from the Community

What do you like most about Barracuda Web Application Firewall?
It significantly improved our overall web security posture, addressing intrusions and enhancing control over web URLs...
See all answers
What is your primary use case for Barracuda Web Application Firewall?
Our primary use case was to track the traffic on websites or webshops to identify potential malicious actors, such as...
See all answers
What is your experience regarding pricing and costs for Barracuda Web Application Firewall?
The pricing for Barracuda is quite high compared to other OEMs. Each transaction requires my purchase team to negotia...
See all answers
Do you recommend HAProxy?
I do recommend HAProxy for more simple applications or for companies with a low budget, since HAProxy is a free, open...
See all answers
What do you like most about HAProxy?
The solution is effective in managing our traffic.
See all answers
What is your experience regarding pricing and costs for HAProxy?
HAProxy is an open-source solution.
See all answers
What do you like most about Imperva Incapsula?
We use Imperva DDoS to stop DDoS attacks and reduce the amount of unwanted queries against web services or web scraping.
See all answers
What is your experience regarding pricing and costs for Imperva DDoS?
The pricing is rated a ten on a scale where ten is very expensive. The solution is only cloud-based and does not prov...
See all answers
What needs improvement with Imperva DDoS?
Pricing can be improved, as it is quite expensive. Additionally, support response times for emails can sometimes be d...
See all answers
 

Comparisons

Fortinet FortiWeb vs Barracuda Web Application Firewall Logo
Fortinet FortiWeb vs Barracuda Web Application Firewall
Compared 24% of the time
F5 Advanced WAF vs Barracuda Web Application Firewall Logo
F5 Advanced WAF vs Barracuda Web Application Firewall
Compared 20% of the time
Microsoft Azure Application Gateway vs Barracuda Web Application Firewall Logo
Microsoft Azure Application Gateway vs Barracuda Web Application Firewall
Compared 9% of the time
NetScaler vs Barracuda Web Application Firewall Logo
NetScaler vs Barracuda Web Application Firewall
Compared 8% of the time
AWS WAF vs Barracuda Web Application Firewall Logo
AWS WAF vs Barracuda Web Application Firewall
Compared 4% of the time
More Barracuda Web Application Firewall Competitors
Microsoft Azure Application Gateway vs HAProxy Logo
Microsoft Azure Application Gateway vs HAProxy
Compared 14% of the time
NetScaler vs HAProxy Logo
NetScaler vs HAProxy
Compared 12% of the time
Istio vs HAProxy Logo
Istio vs HAProxy
Compared 12% of the time
Envoy vs HAProxy Logo
Envoy vs HAProxy
Compared 10% of the time
Kemp LoadMaster vs HAProxy Logo
Kemp LoadMaster vs HAProxy
Compared 9% of the time
More HAProxy Competitors
Cloudflare vs Imperva DDoS Logo
Cloudflare vs Imperva DDoS
Compared 25% of the time
Akamai vs Imperva DDoS Logo
Akamai vs Imperva DDoS
Compared 18% of the time
Arbor DDoS vs Imperva DDoS Logo
Arbor DDoS vs Imperva DDoS
Compared 9% of the time
Radware DDoS vs Imperva DDoS Logo
Radware DDoS vs Imperva DDoS
Compared 6% of the time
Prolexic vs Imperva DDoS Logo
Prolexic vs Imperva DDoS
Compared 2% of the time
More Imperva DDoS Competitors
 

Product Reports

Buyer's Guide
Barracuda Web Application Firewall
June 2025
Barracuda Web Application Firewall reportDownload Barracuda Web Application Firewall product report
Buyer's Guide
HAProxy
June 2025
HAProxy reportDownload HAProxy product report
Buyer's Guide
Imperva DDoS
April 2025
Imperva DDoS reportDownload Imperva DDoS product report
 

Also Known As

No data available
HAProxy Community Edition, HAProxy Enterprise Edition, HAPEE
Imperva Incapsula
 

Overview

Barracuda Web Application Firewall is a game-changing cloud-connected security solution that enables organizations to safeguard both their applications and their data from an ever-growing array of advanced cyber threats. It offers protection from cyber attacks that target not only data and applications stored on the cloud but also those that are housed on web servers. 43% of the time a breach takes place via a compromised application. Barracuda Web Application Firewall prevents these types of breaches from occurring.

Barracuda Web Application Firewall denies hackers the ability to penetrate your system by using a number of techniques to keep your organization safely insulated. The first method of protection consists of two parts. The first part involves a thorough scanning of all inbound web traffic. This solution monitors everything that comes into the system. It employs IP reputation intelligence, which filters all incoming data. If the source of the data has a bad reputation, it is blocked by the firewall. Administrators now have a way of locking out many common threats that could otherwise compromise sensitive networks. These scans can also allow administrators to protect their systems from within as DLP (Data Loss Prevention) protocols. If any sensitive data attempts to leave, administrators will automatically be alerted and the data will be blocked from exiting.

Barracuda Web Application Firewall can also be set up to apply the AAA (Authentication, Authorization & Accounting) framework to an organization’s network. If an intruder manages to get past the authentication stage, the authorization protocols kick in. After the authorization stage comes accounting, which works by tracking and logging users’ activities so that administrators will be in a position to prevent long-term damage from being done. This three-step process can be implemented without requiring administrators to make changes to their applications.

Key Features

Some of Barracuda Web Application Firewall’s key features include:

  • The ability to employ adaptive profiling. Administrators will have an easier time enforcing security policies once this feature is enabled. It takes data from safe sources and builds profiles that can be used to create whitelisting protocols that prevent unsafe actions from occurring on the system.
  • The ability to assess threats in real time. Barracuda Web Application Firewall uses machine learning to detect new threats and attacks as they emerge.
  • The ability to manage the Barracuda Web Application Firewall system from a single interface. Administrators can manage their Barracuda Web Application Firewall configurations from one centralized location.

Reviews from Real Users

Barracuda Web Application Firewall stands out among its competitors for a number of reasons. One of the main ones is the robustness of the solution. Users are given access to a vast variety of security features in a single product.

PeerSpot user Muhammed S., a Presales Solutions Architect at Hilal Computers, notes this when he writes, "The solution offers multiple security features. There are machine learning features and great URL encryption. It also offers multi-protocol support against DDoS attacks."

Other reviewers note that Barracuda Web Application Firewall is user-friendly, easy to set up, stable, and reliable.

Barracuda Networks

HAProxy is considered by many in the industry to be one of the fastest and most popular and trusted software load balancer products in the marketplace today. Organizations are able to immediately deploy HAProxy solutions to enable websites and applications to optimize performance, security, and observability. HAProxy solutions are available to scale to any environment.

HAProxy is an open-source product and has a robust, active, reliable community. The solutions are continually tested and improved on by the community. HAProxy offers a dynamic design to support the most modern architectures, microservices, and deployment environments (appliances, containers, virtual, and cloud).

HAProxy utilizes a cloud-native protocol, which makes it a complete solution for cloud services such as Red Hat OpenShift, OVH, Rackspace, Digital Ocean, Amazon Web Services (AWS), and more. It also can be used as the reference load balancer in OpenStack.

HAProxy Products

  • HAProxy One: This is a next-gen end-to-end application delivery platform created to secure and streamline modern application architectures. It offers a complete suite of solutions, such as application delivery software, turnkey, and appliance services observed and administered through a central control plane. The product supplies application acceleration, CDN, DDoS, bot management, WAF capabilities, and load balancing.
  • HAProxy Fusion Control Plane: This product enables organizations to streamline workflows, arrange traffic routing and security protocols, enhance the speed of delivery, and scale out of the organization’s applications. HAProxy Fusion Control Plane offers an intuitive user interface to observe and control the complete product lineup and API for administering numerous fleets of HAProxy Enterprise servers, either in the cloud or on premises.
  • HAProxy Edge: This product offering is an application delivery network (ADN) that provides a broad array of turnkey application services with amazing scale and complete visibility. Services include application and content acceleration, advanced security, and load balancing.
  • HAProxy ALOHA Hardware or Virtual Load Balancer: This product is a virtual load balancer or plug-and-play hardware constructed upon HAProxy Enterprise that is designed to support proxying at Layer 4 and Layer 7. It has a user-friendly GUI, simple deployment, and no limit on backend servers, making it a complete product for organizations desiring a reliable system to provide high-end load distribution for critical services.
  • HAProxy Enterprise Kubernetes Ingress Controller: This product is designed to facilitate smooth traffic flow into a Kubernetes cluster. It is able to automatically discover anomalies and changes in an organization's Kubernetes infrastructure and provide precise distribution of traffic to healthy pods, with no downtime caused by poor pod health or scaling changes. The product comes with an embedded WAF to optimize the security of an organization’s applications running in Kubernetes.
  • HAProxy Enterprise: This product is the enterprise-class edition of HAProxy offering a dynamic and sturdy code base with next-generation features, an enterprise suite of add-ons, professional services, and trusted support. 

    • Cluster-wide tracking and rate limiting
    • Advanced DDoS and bot management
    • Web application firewall
    • Reliable expert support
    • High performance modules
    • Device detection and geolocation
    • Real-time dashboard

Reviews from Real Users

Having the right load balancing solution – which is what HAProxy is – and protection in place gives organizations peace of mind.” - Nathanel S., Platform Architect at SES

“I use HAProxy for individuals who can not buy low balancers. I built NFV in a box and send individuals a pathway into an HAProxy VM. The setup was not difficult; it usually takes a day to complete for a VPC. When it comes to pricing, HAProxy is free.” - Nasir O., Network & Cloud Architect at Koala Compute Inc.

HAProxy

Imperva DDoS is a solution that offers protection for web applications and websites and all their associated business-critical data from cyberattacks. The cloud-based application delivery service helps improve user experiences by improving their performance. Through its security platform, Imperva DDoS also provides DDoS mitigation, a web application firewall, and a global load balancer, and includes a content delivery network — all designed to maximize performance.

Imperva DDoS Features

Imperva DDoS has many valuable key features. Some of the most useful ones include:

  • API security
  • Web application firewall
  • Bot management
  • Application delivery
  • Runtime protection (RASP)
  • Discovery and assessment
  • Data protection
  • Data risk analytics
  • Data privacy
  • Application delivery control (ADC)
  • Content delivery network (CDN)
  • DDoS mitigation
  • Global server load-balancing (GSLB)
  • Web application firewall (WAF)
  • Client-side protection
  • Runtime protection

Imperva DDoS Benefits

There are several benefits to implementing Imperva DDoS. Some of the biggest advantages the solution offers include:

  • Reduce web application risk: Imperva DDoS includes automatic policy creation and fast rule propagation that give your IT and security departments the ability to use third-party code without risk while working at the pace of DevOps.
  • Security from edge to database: Imperva DDoS’s WAF feature secures from edge to database, so the traffic you receive is only the traffic you want.
  • Safeguard sensitive and personal data: Imperva DDoS provides visibility into sensitive and personal data, with the controls to protect that data and the ability to unify management across cloud, on-premises, and in hybrid environments to help accommodate changing threats, new regulations, and challenging audits.

Reviews from Real Users

Below are some reviews and helpful feedback written by Imperva DDoS users.

PeerSpot user, Etienne W., CDN & Cybersecurity Engineer - Web performance & security at CDN Tech / Ecritel, says, “It is a good solution that allows us to protect websites. It is stable, scalable, quick and easy to use.” He goes on to explain, “WAF protection works almost out-of-the-box. The Anti-DDoS mitigation in less than 1s, I saw it many times in production, I can say it works. CDN has high performances, and the Smart Caching mode is really "smart" (you can do some efficient caching even if you're not a specialist). Its unique interface for managing security performance and ease of use are the most valuable features of this solution."

An IT Senior Manager at an outsourcing company mentions, “The most valuable features are DDoS protection. The Incapsula [Imperva DDoS] environment helps us monitor all the web activity. All the web activity is passed through their WAF cloud services, then that can help us to monitor those activities. That can help protect against DDoS hacking.”

Another PeerSpot reviewer, Ben D., Sales Executive at EVVO LABS, comments, "Imperva Incapsula [DDoS] has many valuable features. One, it protects the top 10 OWASP vulnerability, the open web application software platform, this is standard. Secondly, it protects against broken authentication. As well, it has remote execution of code."

A Solutions Architect at a financial services firm states, “The solution's most valuable aspect is that it is easy to configure. The solution keeps itself up to date itself and there's no customization that we need to do. It makes it extremely easy and cuts back on the amount of work required, and saves us on man-hours.”

Imperva
 

Sample Customers

Oracle, CBS, Pioneer, Hyundai, Publix, Barnes Noble, Calzedonia, Nordstrom, Samsung, Nascar
Booking.com, GitHub, Reddit, StackOverflow, Tumblr, Vimeo, Yelp
Hitachi, BNZ, Bitstamp, Moz, InnoGames, BTCChina, Wix, LivePerson, Zillow and more.
Buyer's Guide
Web Application Firewall (WAF)
June 2025
Download Free Report
Find out what your peers are saying about Amazon Web Services (AWS), F5, Microsoft and others in Web Application Firewall (WAF). Updated: June 2025.
DOWNLOAD NOW
857,162 professionals have used our research since 2012.