Coming October 25: PeerSpot Awards will be announced! Learn more

F5 Advanced WAF vs Imperva Web Application Firewall comparison

You must select at least 2 products to compare!
Comparison Buyer's Guide
Executive Summary
Updated on August 3, 2022

We performed a comparison between F5 Advanced WAF and Imperva Web Application Firewall based on our users’ reviews in four categories. After reading all of the collected data, you can find our conclusion below.

  • Ease of Deployment: Users of F5 Advanced WAF are divided over whether it is an easy solution to deploy. Some find it to be extremely complex while others find the deployment process to be straightforward.

    Reviewers of Imperva Web Application Firewall find it to be a simple product to deploy. However, one user notes that deployment can sometimes require a high level of customization to ensure that it best meets an organization’s needs.
  • Features: For the most part, reviewers of both products find them to be highly stable and scalable.

    Reviewers say that F5 Advanced WAF’s ease of use is among its most valuable features. However, users feel that its interface could be greatly improved.

    Users of Imperva Web Application Firewall find its security features to be extremely valuable. However, its reporting features could be improved.
  • Pricing: Reviewers are happier with the price of F5 Advanced WAF than they are with the price of Imperva Web Application Firewall.
  • Service and Support: Users of both solutions note that, for the most part, their technical support teams are excellent.

Comparison of Results: Based on the parameters we compared, F5 Advanced WAF seems to be the marginally superior solution. Our reviewers find that Imperva Web Application Firewall‘s cost makes it prohibitive for some organizations to afford.

To learn more, read our detailed F5 Advanced WAF vs. Imperva Web Application Firewall report (Updated: September 2022).
635,513 professionals have used our research since 2012.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
"The most valuable features of F5 Advanced WAF are the easy identification of events and customization. We can pinpoint our settings.""The most valuable feature is that it is secure.""The most valuable features of F5 Advanced WAF are the balancer and you can change policies very easily.""The most valuable features of F5 Advanced WAF are SSL uploading, signature, and anomaly detection. It is overall a high-quality solution.""We can monitor IP locations, but we have constraints from each country. It has a replication feature. Licenses can be shared, taking turns with each license.""My favorite feature of F5 is the ability to play around with the ciphers. I also like the ability to have an immediate display of the support IDs when a real blockage occurs. The protection offered is great.""The solution uses AI to protect against botnet attacks.""Good technology for mitigating different application attacks, e.g. DDoS, DNS, and layer seven attacks."

More F5 Advanced WAF Pros →

"The most important feature I have found to be the ease in how to do the backup and restores.""There are a number of features that are valuable such as the account takeover and various antivirus features.""The solution can scale.""The solution is stable.""Very scalable and very stable firewall for web applications, with a good interface in its cloud version. Mitigation is its most valuable feature. The technical support for this product is also good.""The solution integrates seamlessly with other tools and has a good alert mechanism.""The most valuable features of the Imperva Web Application Firewall are performance and flexibility. We can extend or customize the box itself.""Imperva WAF's strongest features are the detection of web application threats and vulnerabilities in the source code."

More Imperva Web Application Firewall Pros →

"For me, an area for improvement in F5 Advanced WAF is the reporting as it isn't so clear. The vendor needs to work on the reporting capability of the solution. What I'd like to see in the next release of F5 Advanced WAF is threat intelligence to protect your web application, particularly having that capability out-of-the-box, and not needing to pay extra for it, similar to what's offered in FortiWeb, for example, any request that originates from a malicious IP will be blocked automatically by FortiWeb. F5 Advanced WAF should have the intelligence for blocking malicious IPs, or automatically blocking threats included in the license, instead of making it an add-on feature that users have to pay for apart from the standard licensing fees.""The interface is old-looking, it's not modern, which is why it's not always comfortable to use.""The solution should include protection against web page attacks like what is available in FortiWeb.""F5 Advanced needs to improve its bot protection. The solution needs to have machine learning to learn the behavior of the customer to recognize the human versus the bot. This is a difficult feature to explain to our customers. I would like documentation about the bot feature to make it easier for the customer to understand.""There should be more ability to rate limit certain scenarios. The majority of the time, it is either on or off. For certain types of use cases, there should be the ability to rate limit, not just enable or disable.""The deployment side is quite complex.""There is a gap in report management.""It should be a little bit easy to deploy in terms of the overall deployment session. One of our customers is a bit unhappy about the reporting options. Currently, it automatically deletes event logs after some limit if a customer doesn't have any external Syslog server. It is a problem for those customers who want to review event logs after a week or so because they won't get proper reports or event logs. They should increase the duration to at least a month or two for storing the data on the device. F5 is not a leader in Gartner Quadrant, which affects us when we go and pitch this solution. Customers normally go and take a look at such annual reports, and because F5 is currently not there as a leader, the customers ask about it even though we are saying it is good in all things. F5 is not known for something totally different or unique. They were a major player in ADP, and they are just rebranding themselves into security. They should improve or increase their marketing as a security company now. They have already started to do that, but they should do it more so that when it comes to security, customers can easily remember F5. At the moment, if we say F5, load balancing comes to mind. With rebranding and marketing, all customers should get the idea that F5 is now mainly focusing on the security part of it, and it is a security company instead of load balancing. This is the first solution that should come to a customer's mind for a web application firewall."

More F5 Advanced WAF Cons →

"Sometimes our web application firewall will slow down.""Imperva Web Application Firewall can improve by providing better features, such as improved prevention of zero-day attacks. Additionally, it should include a VR meta-analysis.""Imperva Web Application Firewall can improve by adding more features to the dashboard. increasing the visibility of the real-time events, besides configuring the administration itself.""The solution works for particular zones but isn't always the best solution for all zones.""I am looking for more data enrichment. We should have the ability to add our own custom data to the system, to the live traffic.""It would be nice to have more security control over mobile applications so I would suggest adding more mobile security features. It would also be beneficial to see improvements in regards to interface bandwidth performance, CPU time, and RAM size. Learning capability of the device is quite weak.""Imperva Web Application Firewall is a good system, but we found that the visibility of the diverse-path server, e.g. where the traffic is coming from, the different IPs, etc., needs improvement.""The support for the on-premises version needs improvement."

More Imperva Web Application Firewall Cons →

Pricing and Cost Advice
  • "Its price is fair. We have done a couple of deals where they were able to give some kind of discount to the customers. The price was initially high for the customers, but after a couple of negotiations, it came within their budget. They were happy with that."
  • "There are various plans available for Fortinet FortiWeb Cloud WAF as a Service, including a trial version."
  • "It is expensive. Its price should be better. Its licensing is on a yearly basis. Its licensing is also based on the model. There are no additional costs."
  • "I don't have any issue with the pricing of this solution."
  • "There is an annual subscription for this solution."
  • "The price of the solution is reasonable when compared with other products, such as FortiWeb. I am very satisfied with the price."
  • "Pricing for this solution is higher than average."
  • "There is a perpetual license that comes with your hardware. There is also an additional fee for support."
  • More F5 Advanced WAF Pricing and Cost Advice →

  • "There is a license for this solution and we purchase the license annually with no additional fees."
  • "There are a couple of different licensing models."
  • "The price of Imperva Web Application Firewalls is expensive compared to others."
  • "Licensing can range from one to twenty thousand dollars annually. Additionally, some features, including software support, require an annual subscription as well."
  • "Imperva Web Application Firewall price is higher compared to other solutions. However, everything is included in the price."
  • "We sell three-year licenses for Imperva Web Application Firewall to our customers. The price is a little expensive."
  • "The solution's pricing is an issue."
  • More Imperva Web Application Firewall Pricing and Cost Advice →

    Use our free recommendation engine to learn which Web Application Firewall (WAF) solutions are best for your needs.
    635,513 professionals have used our research since 2012.
    Questions from the Community
    Top Answer:The most valuable features of F5 Advanced WAF are the balancer and you can change policies very easily.
    Top Answer:The price of F5 Advanced WAF could improve it is expensive. There can be extra features added at an additional cost. I rate the price of F5 Advanced WAF a three out of five.
    Top Answer:The overall price of F5 Advanced WAF could improve.
    Top Answer:For ADC, any ADC can do a good job. But in case if you want to add WAF functionality to the same ADC hardware you have to look for other ADC's like F5, Imperva, Radware, Fortinet, etc. 
    Top Answer:You can have a look to Imperva Cloud WAF, the anti-DDoS mitigation is under 1s and works very well. I observed a lot of DDoS attacks that were well managed (even not seen by the customer) by Imperva… more »
    Average Words per Review
    Average Words per Review
    Learn More

    F5's Advanced WAF is built on proven F5 technology and goes beyond reactive security such as static signatures and reputation to proactively detect and mitigate bots, secure credentials and sensitive data, and defend against application denial-of-service (DoS). Advanced WAF redefines application security to address the most prevalent threats organizations face today.

    Advanced WAF is offered as an appliance, virtual edition, and as a managed service—providing automated WAF services that meet complex deployment and management requirements while protecting your apps with great precision. It is the most effective solution for guarding modern applications and data from existing and emerging threats while maintaining compliance with key regulatory mandates.

    Advanced WAF redefines application security to address the most prevalent threats organizations face today:

    •Web attacks that steal credentials and gain unauthorized access across user accounts.
    •Application layer attacks that evade static security based on reputation and manual signatures.
    •New attack surfaces and threats due to the rapid adoption of APIs.
    •OWASP Top 10 vulnerabilities

    Web application attacks deny services and steal sensitive data. Imperva Web Application Firewall (WAF) analyzes and inspects requests coming in to applications and stops these attacks.

    Protect your applications in the cloud and on-premises with the same set of security policies and management capabilities. Safely migrate apps while maintaining full protection.

    Deploy Imperva WAF on-premises, in AWS and Azure, or as a cloud service itself. Easily meet the specific security and service level requirements of individual applications.

    Imperva WAF protects against the most critical web application security risks: SQL injection, cross-site scripting, illegal resource access, remote file inclusion, and other OWASP Top 10 and Automated Top 20 threats. Imperva security researchers continually monitor the threat landscape and update Imperva WAF with the latest threat data.

    Learn more about F5 Advanced WAF
    Learn more about Imperva Web Application Firewall
    Sample Customers
    MAXIMUS, Vivo, American Systems, Bangladesh Post Office, City Bank
    BlueCross BlueShield, eHarmony, EMF Broadcasting, GE Healthcare, Metro Bank, The Motley Fool, Siemens
    Top Industries
    Financial Services Firm39%
    Computer Software Company22%
    Non Tech Company9%
    Media Company9%
    Computer Software Company20%
    Comms Service Provider17%
    Financial Services Firm13%
    Comms Service Provider17%
    Computer Software Company17%
    Insurance Company17%
    Energy/Utilities Company8%
    Computer Software Company19%
    Comms Service Provider15%
    Financial Services Firm14%
    Insurance Company5%
    Company Size
    Small Business29%
    Midsize Enterprise24%
    Large Enterprise48%
    Small Business20%
    Midsize Enterprise18%
    Large Enterprise62%
    Small Business53%
    Midsize Enterprise14%
    Large Enterprise33%
    Small Business19%
    Midsize Enterprise18%
    Large Enterprise64%
    Buyer's Guide
    F5 Advanced WAF vs. Imperva Web Application Firewall
    September 2022
    Find out what your peers are saying about F5 Advanced WAF vs. Imperva Web Application Firewall and other solutions. Updated: September 2022.
    635,513 professionals have used our research since 2012.

    F5 Advanced WAF is ranked 4th in Web Application Firewall (WAF) with 28 reviews while Imperva Web Application Firewall is ranked 7th in Web Application Firewall (WAF) with 17 reviews. F5 Advanced WAF is rated 8.4, while Imperva Web Application Firewall is rated 8.6. The top reviewer of F5 Advanced WAF writes "Extremely stable hardware with great plug-ins and excellent features". On the other hand, the top reviewer of Imperva Web Application Firewall writes "Simple to maintain, easy to configure, and easy to scale". F5 Advanced WAF is most compared with Fortinet FortiWeb, Microsoft Azure Application Gateway, NGINX App Protect, AWS WAF and Azure Front Door, whereas Imperva Web Application Firewall is most compared with AWS WAF, Microsoft Azure Application Gateway, Imperva DDoS, Fortinet FortiWeb and Azure Front Door. See our F5 Advanced WAF vs. Imperva Web Application Firewall report.

    See our list of best Web Application Firewall (WAF) vendors.

    We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.