We performed a comparison between Cloudflare and Imperva DDoS based on real PeerSpot user reviews.
Find out in this report how the two CDN solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."I like Cloudflare's application gateway and DDoS protection."
"Smaller businesses have seen great ROI due to the low investment and strong performance."
"Centralized, full-featured DNS."
"Many websites require an SSL certificate because they sell stuff and want SSL. Cloudflare comes with an SSL certificate built in. It's automatic. You sign yourself up for Cloudflare, and an SSL certificate automatically protects your website. You don't necessarily need a certificate if you have a connection between your website and your host, the server, Cloudflare, and the host."
"The solution offers the flexibility to control configuration rules."
"New and innovative way to protect the client's data."
"It is easier to configure and develop documentation to see how we have configured firewalls."
"Easier http to https redirect using page rules"
"They're quite easy to install and quite easy to set up. Clients really like that. Especially when you're dealing with the cloud, it's really easy."
"The solution's most valuable aspect is that it is easy to configure."
"The technical support is excellent."
"Imperva DDoS is fairly stable, and its availability is quite high."
"Technical support provides good, quick responses."
"I like the user-friendly interface."
"The setup of Imperva DDoS was easy."
"Setup was straightforward, very simple. I only entered the domain and Incapsula returned the DNS data that I needed to change for the protection to be configured."
"The solution could work at being less expensive. It costs a lot to use it."
"Sometimes their more advanced caching tools can cause higher first-byte times and problems with JavaScript."
"Although I think it's quite good, it doesn't provide me with all the features I would expect to have if I were using Imperva."
"It would be beneficial for us if Cloudflare could offer a scrubbing solution. This would involve taking a snapshot of my website and keeping it live during a DDoS attack, ensuring uninterrupted service for our users. DDoS attacks are typically short in duration, and having Cloudflare maintain the site's availability from its secure network would enhance the overall user experience. I would appreciate it if Cloudflare could consider implementing this feature. Many organizations already utilize similar capabilities in their CDN platforms, where a static snapshot of the web page is displayed during DDoS attacks. In terms of features, Cloudflare needs to enhance its resilience and stay more focused on adopting new technologies. For instance, solutions like F5 XC Box, Access Solution, and Distributed Cloud Solution have impressive features, and Cloudflare should strive to match and exceed those capabilities. There's a need for improvement in areas like AI-based DDoS attacks and Layer 7 WAF features. Cloudflare should prioritize enhancements in areas such as behavioral DDoS and protection against SQL injection attacks, considering the prevalent trend of public exposure to the internet for business reasons. Overall, Cloudflare needs to invest more in advancing its feature set."
"Even if I wanted to, I wouldn't be able to buy Cloudflare in my country."
"One area of improvement is in the Access Rules. Hypothetically, if we wanted to block or challenge traffic outside of the United States, the only way to currently do that (as far as I know) is to enter every single country outside of the United States. That could be a labor intensive job. A solution could be to enable users to create a rule where traffic is only allowed within a certain country."
"The product support needs to be accessible from more places, a wider area of coverage."
"The solution could use more analytics on the backend to give us more insights into everything. More reports would be helpful."
"The log analytics interface within Incapsula isn't really good. For example, if you have to get all logs from there, it's a very cumbersome process."
"It needs to be improved every time there are new attacks."
"Certificate management could be improved."
"The solution should integrate with something that looks at continuous security management."
"We had an issue when securing the web applications for DDoS protection."
"We would like them to hire people in Sweden because it's quite hard when people are sitting in the UK or Belgium because some of the customers really want them to be local."
"The weakest point of Imperva is their first level of support, which should be improved. They should also improve the access and security logs viewing directly on the portal. I would like to see better access and security logs through the portal and not only through a SIM solution. Currently, if you want to explore your access and security logs from Imperva, you need a SIM tool or a SIM infrastructure on your side to do it. You can't do it manually or directly through the portal, which is a big problem for us. I had a call yesterday with Imperva for the roadmap, and I just told them this. They agreed that this is an improvement point from their side."
"There’s nothing that’s missing in terms of features."
Cloudflare is ranked 1st in CDN with 56 reviews while Imperva DDoS is ranked 5th in CDN with 74 reviews. Cloudflare is rated 8.4, while Imperva DDoS is rated 8.8. The top reviewer of Cloudflare writes "It's easy to set up because you point the DNS to it, and it's working in under 15 minutes". On the other hand, the top reviewer of Imperva DDoS writes "I like the content monitoring feature which I haven't seen in other WAF solutions". Cloudflare is most compared with Akamai, Azure Front Door, Microsoft Azure Application Gateway, AWS Shield and Arbor DDoS, whereas Imperva DDoS is most compared with Akamai, Arbor DDoS, Radware DefensePro, AWS WAF and Imperva Web Application Firewall. See our Cloudflare vs. Imperva DDoS report.
See our list of best CDN vendors and best Distributed Denial of Service (DDOS) Protection vendors.
We monitor all CDN reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.