Fortinet FortiADC vs Imperva Web Application Firewall comparison

Cancel
You must select at least 2 products to compare!
Comparison Buyer's Guide
Executive Summary

We performed a comparison between Fortinet FortiADC and Imperva Web Application Firewall based on real PeerSpot user reviews.

Find out what your peers are saying about F5, Citrix, HAProxy and others in Application Delivery Controllers (ADC).
To learn more, read our detailed Application Delivery Controllers (ADC) Report (Updated: March 2024).
765,234 professionals have used our research since 2012.
Featured Review
Quotes From Members
We asked business professionals to review the solutions they use.
Here are some excerpts of what they said:
Pros
"Because ADC is the intermediary between the servers and the end-user application, it gives thorough information about the traffic, what the problem is.""The GSLB, the DR side, is the best part. Because we had our main side in one city, we created another, and we had a complete MPLS over the internet. We used the GSLB and data loss for our business applications.""It's a good product because it supports all the features that ADC solutions in the market can support, like F5 solutions, for example, such as the LTM of F5.""The solution provides high-level services such as availability, redundancy, and load balancing between servers.""I like the solution's load balance with DNS intelligence.""Content caching and content compression are good features.""I am impressed with the product's load-balancing feature.""TSL and SSL offloading are both very good features."

More Fortinet FortiADC Pros →

"There are some features that are configured by default, so even without doing much, it can still provide a level of protection.""The WAF itself has been very valuable to me because it has such a complete range of features. Another reason why I like it is because it also takes care of the total overview of the traffic over the network.""There are a number of features that are valuable such as the account takeover and various antivirus features.""It has threat intelligence and we are using Incapsula. With threat intelligence, we can separate HTTP and HTTPS traffic. We can use Incapsula to send all the threat intelligence to the WAF.""One good thing about Imperva Web Application Firewall is it can be on the cloud and also it can be on-premise.""Data masking is the most valuable feature of this solution.""If you are using the appliance as opposed to the virtual deployment, it can stand as the network layer-two and provide real transparency.""The dynamic profiling of websites is the solution's most valuable feature. The security is also good."

More Imperva Web Application Firewall Pros →

Cons
"The solution's WAF needs an upgrade because it is not as good as FortiWeb, VMware, F5, or Imperva.""The user interface could be more friendly and CLI could be more like that of Fortigate.""Technical support and documentation could both be improved.""There is a mismatch between the number of features they are offering and the device capacity on how much it can handle.""The initial setup could be simplified.""The L7 Persistent load-balancing algorithm has not worked for me after having tested it many times with my customer's in-house application. I'd like to suggest that the company make sure that all load-balancing algorithms work properly with most applications, even those that are in-house apps.""Fortinet FortiADC should include an advanced-level SD-WAN.""The configuration is relatively complex."

More Fortinet FortiADC Cons →

"The UI interface needs improvement.""One potential improvement for Imperva is enhancing its alert system.""I'd like the option to pick your bot protection.""I would like to improve the tool's turnaround time in terms of support.""The user interface could be better.""The only disadvantage of Imperva is that it is a pretty costly solution.""Some of the features should be included in the next release is a file integrating monitoring tool. This feature should be improved.""Imperva Web Application Firewall could improve the API integration. It was complex for us. Additionally, The onboarding could be better."

More Imperva Web Application Firewall Cons →

Pricing and Cost Advice
  • "The price is competitive"
  • "Compared to F5, FortiADC pricing is better."
  • "The solution could be more cost-effective."
  • "They offer a perpetual license."
  • "The solution is less expensive than F5 or Imperva and is the most reasonably priced option available."
  • "I believe the price is good. It's fair. There are no extra costs."
  • "The product has affordable pricing."
  • "The solution's pricing is an issue and should be improved."
  • More Fortinet FortiADC Pricing and Cost Advice →

  • "Make sure you understand the way that Imperva charges. It's very affordable. However, I would like to see a package with the Virtual Patching included. You get to do patching separately."
  • "Everybody complains about the price of this solution."
  • "The cost of this solution depends on the platform."
  • "The price of this solution is a little bit high compared to competitors."
  • "There are some licenses that you have to buy to use some features. Its price could be better. Price is always important because, at the end of the day, customers have a budget. If you can meet the budget, you can sell, and if you don't, you cannot sell."
  • "There is a license for this solution and we purchase the license annually with no additional fees."
  • "There are a couple of different licensing models."
  • "The price of Imperva Web Application Firewalls is expensive compared to others."
  • More Imperva Web Application Firewall Pricing and Cost Advice →

    report
    Use our free recommendation engine to learn which Application Delivery Controllers (ADC) solutions are best for your needs.
    765,234 professionals have used our research since 2012.
    Questions from the Community
    Top Answer:For ADC, any ADC can do a good job. But in case if you want to add WAF functionality to the same ADC hardware you have to look for other ADC's like F5, Imperva, Radware, Fortinet, etc. 
    Top Answer:I recommend Fortinet FortiADC. My experience with Fortinet has been very positive. Our company has been using it for around five years. We mainly use FortiADC for the load balancing of application… more »
    Top Answer:The product has flexible and interesting licensing options.
    Top Answer:You can have a look to Imperva Cloud WAF, the anti-DDoS mitigation is under 1s and works very well. I observed a lot of DDoS attacks that were well managed (even not seen by the customer) by Imperva… more »
    Top Answer:Imperva is a strong choice, given their security focus and ongoing R&D into the product in areas such as bot management.
    Ranking
    Views
    4,721
    Comparisons
    3,790
    Reviews
    9
    Average Words per Review
    518
    Rating
    7.9
    Views
    8,565
    Comparisons
    6,865
    Reviews
    15
    Average Words per Review
    313
    Rating
    8.5
    Comparisons
    Also Known As
    FortiADC Application Delivery Controller, FortiADC
    Learn More
    Overview

    Fortinet FortiADC is a robust application delivery controller (ADC) that delivers application optimization, application security, and application availability. FortiADC is a valued offering from Fortinet, which is widely recognized as a trusted supplier of dynamic security solutions worldwide. FortiADC offers dynamic security functions (AV, DDoS, and WAF) in addition to advanced application connectors for a simplified deployment and complete transparency to an organization's networks and applications. FortiADC offers three primary deployment options: physical machine, virtual machine, (VM) and cloud solution options.

    Fortinet FortiADC Benefits

    • FortiADC security protocol: FortiADC integrates with FortiSandbox to improve the overall antivirus security protections where every file is scanned for known and unknown malicious risks. If a file is identified as malicious or problematic, it will be blocked in the future.

    • SSL protocol: FortiADC securely uses the most up-to-date cryptography to provide exceptional encryption and decryption using a hardware-based SSL ASIC. FortiADC offers complete transparency to inspect all traffic for threats, improves server response time, and reduces backend server load, SSL inspection and SSL offloading. FortiADC integrates seamlessly with Gemalto’s SafeNet Hardware Security Module (HSM).

    • FortiADC connectors: FortiADC Fabric Connectors offer open API-based integration and coordination with numerous software-defined networks (SDNs), third-party partners, and cloud management providers. Fortinet Fabric Connectors provide deep open and turnkey integration with recognized third-party vendors such as AWS, K8s, OCI, and SAP, in multi-vendor solutions, improving scalability, simplified management, and automation.

    • Business stability: FortiADC load balancing for on-premise global server load balancing (GSBL) and in the cloud (FortiGSBL Cloud) will ensure users can maintain a reliable and available network by improving the ability of scaling applications throughout numerous data centers to reduce application response times and enhance disaster recovery. Users are able to define protocols based on network latency concerns, overall data performance, and site availability.

    Fortinet FortiADC Features

    • Application availability

      • 4-7 application load balancing: DNS, HTTPS, RTMP, RADIUS, MySQL and more

      • External fabric connectors: Splunk Integration, AWS/OCI Connector, Kubernetes Service.

      • Security fabric connectors: FortiSIEM, Fortigate BanIP Integration, FortiAnalyzer, and more.

      • Deployment modes: High availability (AA/AP Failover), Router mode, transparent mode (switch), one-arm mode (proxy with X-forwarded for support.

    • Web application firewall (WAF)

      • Security services: Captcha support, cookie support, HTTP header security, XML/SOAP/JSON validation, CSRF protection, API gateway, and more.

      • Application security: Web attack signature, bot detection, web vulnerability scanner, OWASP Top-10 Wizard, API protection and more.
    • Application enhancement

      • HTTP and TCP improvement: TCP buffering, HTTP compressions/decompression, HTTP caching (dynamic and static objects), Bandwidth monitoring using quality of service (QoS), TCP buffering, and more.

      • Authentication offloading: Two-factor authentication (Fortitoken/Fortitoken Cloud and Google Authentication), NTLM, AUTH2.0, SAML 2.0 (SP and Idp) RADIUS, LDAP, Kerbos, and local.

      • Networking: Integration with Ansible, Cisco ACI, OpenStack and Nutanix, NVGRE and VXLAN support, VLAN and port trunking support, IPv6 Support (SLB, firewall, routing and interfaces), Dynamic NAT, Hide NAT, Static NAT for added scalability and flexibility.

      • Management: Syslog support, SNMP using private MIBs with threshold-based traps. REST APIs, VDOMS, data analytics, real-time monitoring graphs, role-based monitoring, intuitive reporting, FortiView integration, and more.

    Imperva Web Application Firewall is a versatile solution that protects web applications and databases from various attacks, including DDoS, cross-site scripting, and SQL injection attacks. It offers data security, availability, and access control and can be deployed on-premises or on the cloud. 

    The solution has good security against web attacks and offers advanced bot protection, API security, and mitigation features. Imperva WAF is easy to configure and deploy; it has good customer service and an excellent user interface.

    Sample Customers
    Black Gold Regional Schools, Amadeus Hospitality, Jefferson County, Chunghwa Telecom, City of Boroondara, Dimension Data
    BlueCross BlueShield, eHarmony, EMF Broadcasting, GE Healthcare, Metro Bank, The Motley Fool, Siemens
    Top Industries
    REVIEWERS
    Non Tech Company14%
    Government14%
    Comms Service Provider14%
    Educational Organization14%
    VISITORS READING REVIEWS
    Computer Software Company20%
    Comms Service Provider9%
    Government9%
    Financial Services Firm9%
    REVIEWERS
    Computer Software Company26%
    Financial Services Firm21%
    Insurance Company11%
    Comms Service Provider11%
    VISITORS READING REVIEWS
    Financial Services Firm18%
    Computer Software Company14%
    Insurance Company7%
    Manufacturing Company6%
    Company Size
    REVIEWERS
    Small Business47%
    Midsize Enterprise24%
    Large Enterprise29%
    VISITORS READING REVIEWS
    Small Business27%
    Midsize Enterprise18%
    Large Enterprise55%
    REVIEWERS
    Small Business53%
    Midsize Enterprise16%
    Large Enterprise31%
    VISITORS READING REVIEWS
    Small Business20%
    Midsize Enterprise15%
    Large Enterprise65%
    Buyer's Guide
    Application Delivery Controllers (ADC)
    March 2024
    Find out what your peers are saying about F5, Citrix, HAProxy and others in Application Delivery Controllers (ADC). Updated: March 2024.
    765,234 professionals have used our research since 2012.

    Fortinet FortiADC is ranked 8th in Application Delivery Controllers (ADC) with 19 reviews while Imperva Web Application Firewall is ranked 6th in Web Application Firewall (WAF) with 44 reviews. Fortinet FortiADC is rated 7.8, while Imperva Web Application Firewall is rated 8.6. The top reviewer of Fortinet FortiADC writes "High-level load balancing and routing protocols but scalability is limited to 200 gigabits". On the other hand, the top reviewer of Imperva Web Application Firewall writes "Offers simulation for studying infrastructure and hybrid infrastructure protection". Fortinet FortiADC is most compared with F5 BIG-IP Local Traffic Manager (LTM), Fortinet FortiWeb, Citrix NetScaler, Kemp LoadMaster and Cloudflare, whereas Imperva Web Application Firewall is most compared with AWS WAF, F5 Advanced WAF, Microsoft Azure Application Gateway, Fortinet FortiWeb and Azure Front Door.

    We monitor all Application Delivery Controllers (ADC) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.