No more typing reviews! Try our Samantha, our new voice AI agent.

F5 Rules for AWS WAF vs Indusface AppTrana comparison

Sponsored
 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cloudflare Web Application ...
Sponsored
Ranking in Web Application Firewall (WAF)
7th
Average Rating
8.6
Reviews Sentiment
7.4
Number of Reviews
26
Ranking in other categories
No ranking in other categories
F5 Rules for AWS WAF
Ranking in Web Application Firewall (WAF)
15th
Average Rating
8.4
Reviews Sentiment
7.8
Number of Reviews
10
Ranking in other categories
Business Rules Management (3rd)
Indusface AppTrana
Ranking in Web Application Firewall (WAF)
29th
Average Rating
9.6
Reviews Sentiment
4.6
Number of Reviews
2
Ranking in other categories
Distributed Denial-of-Service (DDoS) Protection (20th), Bot Management (12th)
 

Mindshare comparison

As of July 2026, in the Web Application Firewall (WAF) category, the mindshare of Cloudflare Web Application Firewall is 4.0%, down from 5.8% compared to the previous year. The mindshare of F5 Rules for AWS WAF is 0.4%, up from 0.0% compared to the previous year. The mindshare of Indusface AppTrana is 0.7%, up from 0.3% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Web Application Firewall (WAF) Mindshare Distribution
ProductMindshare (%)
Cloudflare Web Application Firewall4.0%
F5 Rules for AWS WAF0.4%
Indusface AppTrana0.7%
Other94.9%
Web Application Firewall (WAF)
 

Featured Reviews

DB
CTO at PlayNirvana
Advanced security reporting has protected high-traffic betting platforms from constant attacks
I don't see room for improvement to Cloudflare Web Application Firewall. One thing I don't know much about because we have a dedicated IT team for that, and I'm not involved with Cloudflare much anymore. But if I were to compare them to F5, I would like to see more features that F5 offers. F5 has an option to bring the whole infrastructure, the whole WAF and all their packages, Bot Management, and everything else on your infrastructure. You need to install certain services from their side, and then you can choose if you would like requests to hit your servers immediately or if requests need to be proxied through F5 backbone. That would be a nice addition because we have 90% of the traffic as legit traffic coming from whitelisted servers. If it comes from whitelisted servers, I don't need to go every request through the backbone; I could easily just IP whitelist everything. Then I could maybe have Bot Management on my infrastructure that drastically reduces the price of Cloudflare. I would like to see Push CDN more improved in the next release of Cloudflare Web Application Firewall. And maybe something similar to Pushpin that Fastly has, which is an option where you can push messages that then can be scaled globally over the network. From our perspective, if we have a listener that listens for stock updates, I would just need to have one processor that pushes those updates to the Cloudflare API, and then Cloudflare would broadcast that message to all listeners. Cloudflare will check the order of the message, and if you, as a customer, are not connected or have some kind of network issue, when you reconnect, you will receive the latest state and missing updates.
Vibin Thomas - PeerSpot reviewer
Technical Team Lead - Content Security at Valuepoint Systems
Advanced protection has reduced web attacks and improves application performance and operations
One area where F5 Rules for AWS WAF can be improved is in simplifying the tuning process. While F5 Rules for AWS WAF is powerful, fine-tuning it to match specific application behavior can sometimes be complex and time-consuming, especially for teams without deep WAF expertise. Another improvement could be enhanced visibility and reporting. Although AWS WAF provides logs, having more intuitive and built-in dashboards or clearer categorization of rule triggers would make it easier to quickly identify and analyze attack patterns. Additionally, expanding the capabilities around bot management and behavior analysis would be beneficial compared to some dedicated bot management solutions. More advanced detection techniques could further strengthen the protection against sophisticated automated traffic. Finally, providing more predefined templates or best practice recommendations for different application types would help speed up the deployment and reduce the initial configuration effort.
Arshad Nr - PeerSpot reviewer
Senior Security Consultant at CyberNxt Solutions LLP
Provides comprehensive executive vulnerability scanning report for applications
Dashboards are very helpful for showcasing Top 5 attacked applications, Top 5 Vulnerable applications, and Top 5 Vulnerabilities affected in Applications. It helped me to prioritize the resources to secure and showcase the same to management. We don't need to analyze manually to identify all the applications and logs to find top priorities. The Apptrana helped to identify it.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"Caching is the most valuable feature of Cloudflare Web Application Firewall."
"The setup process is very simple for me."
"In general, it's a very good product: the solution is very stable, the performance is great, the product offers very good scalability, the pricing is very reasonable, the installation is very straightforward and quite simple, and technical support has a very fast response time and is helpful."
"For us, the key feature of Cloudflare is DDoS protection and IP hiding, especially since we are a crypto company."
"Very glad the WAF rulesets works out of box, and requires very little tuning or maintenance."
"We like that there's load balancing, firewall capabilities, DDoS protection, et cetera, all covered by Cloudflare."
"The product has improved our security posture by blocking bad actors."
"This is a good product; it's reliable and scales well."
"F5 Rules for AWS WAF is a strong, enterprise-focused solution for organizations that need robust web application security, centralized policy management, and better visibility into application layer threats within AWS environments."
"I advise anyone looking for a great tool to secure their public-facing applications to start using F5 Rules for AWS WAF."
"F5 Rules for AWS WAF has positively impacted our organization for security through the implementation of traffic rules in our application."
"Overall, the combination of reduced manual effort, improved security posture, and better application performance has delivered a strong return on investment."
"In the past few years, we have zero security incidents, indicating a return on investment."
"F5 Rules for AWS WAF has positively impacted us by improving our web application security without adding too much operational overhead."
"After implementing F5 Rules for AWS WAF, we observed a reduction of approximately 60 to 70% in web application security incidents reaching our application team, particularly blocking common threats like bot traffic and SQL injections without impacting our downstream systems."
"F5 Rules for AWS WAF should be highly recommended for AI applications, as security is a major concern, and using F5 helps prevent security issues and stabilizes organizations and applications."
"AppTrana helped us to protect the public-hosted Web, API, and Mobile applications by acting as a strong WAF solution which has Machine learning compatibility that analyzes and blocks the Behavior DDoS attacks."
"We use Indusface AppTrana as a firewall."
 

Cons

"It would be ideal if the solution offered better log integration and more integration with different platforms."
"Their documentation could be better. They don't have documentation that explains everything well."
"Its stability could be better."
"They have some limitations with third-party integrations."
"Cloudflare should update the version of the ModSecurity core rule set that they run on."
"Their documentation could be better. They don't have documentation that explains everything well. They have documentation for everything you're looking for, but they lack a single piece of documentation to tie everything together. As a new user or beginner, it took us a little bit of time to figure out how to put all these things in place."
"Cloudflare Web Application Firewall should improve visibility for a customer."
"There could be an option to duplicate the cluster to maintain the consistency of rules."
"The additional costs for F5 Rules for AWS WAF are quite high, as F5 managed rules require a separate subscription on top of the standard AWS WAF charges; it would be great if it would be pre-integrated."
"One area where F5 Rules for AWS WAF can be improved is in simplifying the tuning process."
"F5 Rules for AWS WAF could be improved with deeper integration with Infrastructure as Code tools like Terraform for simplification, as well as more AI-driven recommendations for rules tuning to reduce false positives and better dashboards for visibility at the CXO level."
"I think F5 Rules for AWS WAF could be improved mainly around visibility, specifically having more actionable recommendations for false positives."
"An area for improvement I see is that while everything is in good shape, I demand continuous improvisation of these rule sets."
"It's too early to talk about a return on investment with F5 Rules for AWS WAF."
"There are potential false positives in F5 Rules for AWS WAF that sometimes require tuning."
"From an improvement standpoint, one area where F5 Rules for AWS WAF could improve is in simplifying policy management and making advanced configurations more intuitive, especially for teams that are newer to enterprise WAF technologies."
"The solution should add an enhanced dashboard to make it easy to navigate."
"AppTrana should improve its backend and frontend connections and loading speed. It is slower compared to other cloud solutions and sometimes it does not sync properly with front-end options and backend."
 

Pricing and Cost Advice

"The solution is expensive."
"It starts at $20 and can easily go up to $200 monthly"
"The solution's pricing option needs to be more transparent for enterprise clients."
"Cloudflare Web Application Firewall is more affordable than other solutions."
"The annual licensing fee is $10,000 USD."
"The pricing model is very straightforward compared to the competition. You just pay per month for the product and usage."
"It is not too pricey."
"What's my experience with pricing, setup cost, and licensing? I believe the pricing is not the best, but it's reasonable and acceptable. We also use the McAfee system in parallel. In terms of pricing, its okay - not great, but not bad either. It falls in the middle, which is acceptable. In terms of support licensing, last time, we were searching for a solution, and we considered products from resellers rather than directly from the cloud provider. However, the pricing we encountered was exceptionally high. As a result, we are inclined to select support from the reseller."
Information not available
"Indusface AppTrana is an affordable and cost-effective solution."
report
Use our free recommendation engine to learn which Web Application Firewall (WAF) solutions are best for your needs.
902,894 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Construction Company
17%
Financial Services Firm
9%
Comms Service Provider
9%
Manufacturing Company
7%
Construction Company
33%
Comms Service Provider
16%
Computer Software Company
6%
Energy/Utilities Company
5%
No data available
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business16
Midsize Enterprise6
Large Enterprise6
By reviewers
Company SizeCount
Small Business4
Midsize Enterprise1
Large Enterprise6
No data available
 

Questions from the Community

What needs improvement with Cloudflare Web Application Firewall?
I don't see room for improvement to Cloudflare Web Application Firewall. One thing I don't know much about because we...
What is your primary use case for Cloudflare Web Application Firewall?
We are using Cloudflare Web Application Firewall's advanced reporting and analytics tools with their Zero Trust, so e...
What is your experience regarding pricing and costs for F5 Rules for AWS WAF?
My experience with the pricing, setup cost, and licensing for F5 Rules for AWS WAF was good with purchasing and the s...
What needs improvement with F5 Rules for AWS WAF?
From an improvement standpoint, one area where F5 Rules for AWS WAF could improve is in simplifying policy management...
What is your primary use case for F5 Rules for AWS WAF?
My main use case for F5 Rules for AWS WAF is strengthening web application security for internet-facing applications ...
What needs improvement with Indusface AppTrana?
AppTrana should improve its backend and frontend connections and loading speed. It is slower compared to other cloud ...
What is your primary use case for Indusface AppTrana?
I have used AppTrana for scanning and identifying vulnerabilities in APIs web applications and mobile applications, a...
 

Also Known As

Cloudflare WAF
No data available
AppTrana
 

Overview

 

Sample Customers

crunchbase, udacity, marketo, okcupid, zendesk
Information Not Available
Shoppers Stop, TCS
Find out what your peers are saying about F5 Rules for AWS WAF vs. Indusface AppTrana and other solutions. Updated: June 2026.
902,894 professionals have used our research since 2012.