We performed a comparison between Cloudflare and Microsoft Azure Application Gateway based on real PeerSpot user reviews.
Find out in this report how the two Distributed Denial of Service (DDOS) Protection solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Centralized, full-featured DNS."
"We're using dynamic components to build flexible pages to create and manage Git merge requests for code and reviews."
"The solution is very good at mitigating threats."
"The most valuable feature is the web application firewall."
"New and innovative way to protect the client's data."
"Cloudflare offers CDN and DDoS protection. We have the front end, API, and database in how you structure applications."
"Cloudflare is a security SaaS provider that provides security and protects us from any application layer attack."
"There are key things that are used for our enterprise customers, such as Lambda and DNS."
"The solution is easy to set up."
"WAF feature replicates the firewall."
"The solution provides great automation and it is easy to upgrade service."
"I find Application Gateway’s WAF module valuable because it helps prevent layer 7 attacks."
"The pricing is quite good."
"It is a scalable solution...The installation phase of Microsoft Azure Application Gateway is very easy."
"The most valuable feature of the solution is the web application firewall (WAF)."
"The product's initial setup phase was easy."
"They lack a good way to manage DNS as a company, since everything is relegated to single account logins until you get to the higher levels. They have come out with a paid feature to remedy this, but I have not had a chance to fully review it yet to know if it fixes the access problem."
"Sometimes their more advanced caching tools can cause higher first-byte times and problems with JavaScript."
"The pricing could be improved."
"It would be beneficial for us if Cloudflare could offer a scrubbing solution. This would involve taking a snapshot of my website and keeping it live during a DDoS attack, ensuring uninterrupted service for our users. DDoS attacks are typically short in duration, and having Cloudflare maintain the site's availability from its secure network would enhance the overall user experience. I would appreciate it if Cloudflare could consider implementing this feature. Many organizations already utilize similar capabilities in their CDN platforms, where a static snapshot of the web page is displayed during DDoS attacks. In terms of features, Cloudflare needs to enhance its resilience and stay more focused on adopting new technologies. For instance, solutions like F5 XC Box, Access Solution, and Distributed Cloud Solution have impressive features, and Cloudflare should strive to match and exceed those capabilities. There's a need for improvement in areas like AI-based DDoS attacks and Layer 7 WAF features. Cloudflare should prioritize enhancements in areas such as behavioral DDoS and protection against SQL injection attacks, considering the prevalent trend of public exposure to the internet for business reasons. Overall, Cloudflare needs to invest more in advancing its feature set."
"Although I think it's quite good, it doesn't provide me with all the features I would expect to have if I were using Imperva."
"It should confirm audit findings of the assigned area with auditees to ensure that the audit conclusions are based on an accurate understanding of the issues."
"The reporting can definitely be improved to offer a lot more explanation on something that may have happened or has actually happened."
"For the free and Pro plans, Cloudflare could use a simple bot to provide information to users. This would improve support, especially for less advanced users who utilize the free components."
"The monitoring on the solution could be better."
"The pricing of the solution is a bit high. The solution should offer different pricing systems."
"In the next release, the solution could improve the integration with Service Mesh and other Azure Security Services."
"The support can be improved when you are configuring the system rules. The Disaster Recovery feature can be added in the next release. The price of the solution can be reduced a bit."
"It could be more stable, and support could be better. It would also be better if they offered more features. For example, it lacks security features. Before we used another English solution, and we realized that some of the rules were not set up correctly and passed through the Application Gateway's English controllers. But the problem, in this case, is if you send ten rules, for example, six rules hit some issues. IP address blocking could be better. The rules, for example, don't work properly. If you have one issue, one rule or another rule will not work. This sounds like total madness to me."
"Application Gateway’s limitation is that the private and the public endpoint cannot use the same port."
"The security of the product could be adjusted."
"The solution should provide more security for certificate-based services so that we can implement more security on that."
More Microsoft Azure Application Gateway Pricing and Cost Advice →
Cloudflare is ranked 1st in Distributed Denial of Service (DDOS) Protection with 55 reviews while Microsoft Azure Application Gateway is ranked 4th in Application Delivery Controllers (ADC) with 38 reviews. Cloudflare is rated 8.4, while Microsoft Azure Application Gateway is rated 7.2. The top reviewer of Cloudflare writes "It's easy to set up because you point the DNS to it, and it's working in under 15 minutes". On the other hand, the top reviewer of Microsoft Azure Application Gateway writes "High stability with built-in rules that reduce alerts and are easy to configure". Cloudflare is most compared with Akamai, Azure Front Door, Imperva DDoS, AWS Shield and Arbor DDoS, whereas Microsoft Azure Application Gateway is most compared with Azure Front Door, Citrix NetScaler, F5 Advanced WAF, Cloudflare Web Application Firewall and F5 BIG-IP Local Traffic Manager (LTM). See our Cloudflare vs. Microsoft Azure Application Gateway report.
We monitor all Distributed Denial of Service (DDOS) Protection reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.