Buyer's Guide
Web Application Firewall (WAF)
November 2022
Get our free report covering Cloudflare, F5, Amazon, and other competitors of F5 Silverline Managed Services. Updated: November 2022.
653,522 professionals have used our research since 2012.

Read reviews of F5 Silverline Managed Services alternatives and competitors

Basil Dange - PeerSpot reviewer
Senior Manager at a financial services firm with 10,001+ employees
Real User
Top 5Leaderboard
Good support and effective against SSL attacks, but the dashboard is complicated
Pros and Cons
  • "This product uses auto-learning and behavioral analysis to establish baselines for legitimate traffic, and automatically detects and blocks traffic behavior that does not conform."
  • "It does not provide the capability to upload data for blacklisting/whitelisting in bulk."

What is our primary use case?

We use this product as our DDoS mitigation solution. This is something that needs to be able to protect against DDoS attacks for Volumetric, Low, and Slow attacks across layer three to layer seven. 

The solution also needs to integrate with a scrubbing center and route traffic in the case of a volumetric attack. It must also have deep knowledge of DNS traffic behavior and must have early and accurate detection/mitigation.

A DDoS mitigation solution must be able to handle high rates of DNS packets and provide the best quality of experience, even under attack. It must also be able to allow or block traffic based on geolocation or a specific IP address.

A DNS Subdomain Whitelist is available, allowing only the good DNS queries through.

How has it helped my organization?

This solution is able to mitigate and protect against SSL attacks, which is important because this type of attack is becoming more popular among attackers, as it only requires a small number of packets to cause a denial of service for a fairly large service.

Attackers launch attacks that use SSL because each SSL session handshake consumes more resources from the server-side than from the client-side, meaning the attack has exponentially increased in size without requiring additional bots or bandwidth. As a result of these amplification effects, even a small attack can result in crippling damage

This solution is able to mitigate attacks and provides automated DDoS defense and protection from fast-moving, high volume, encrypted, or very short duration threats. This includes IoT-based attacks like Mirai, Pulse, Burst, DNS, TLS/SSL attacks, and those attacks associated with Permanent Denial of Service (PDoS) and Ransom Denial-of-Service (RDoS) techniques.

What is most valuable?

This product uses auto-learning and behavioral analysis to establish baselines for legitimate traffic, and automatically detects and blocks traffic behavior that does not conform. 

The SSL decryptor card comes by default with the appliance and can be enabled if needed with the purchase of a license.

This solution uses asymmetric deployment with a challenge/response mechanism that has lower latency & higher capacity to block SSL/TLS attacks.

Behavior-based protection with automatic signature creation against unknown, zero-day DDoS attacks is employed.

Support for wildcard certificates reduces operational complexity because the admin doesn't have to update it every time a certificate changes.

The Cloud Signaling capability is able to route traffic to the scrubbing center in case of a volumetric attack.

It offers effective protection against DNS attacks.

It provides layer three to layer seven protection in on-premises, cloud, and hybrid environments. It's able to detect and mitigate attacks with no performance impact or risk.

This product has a dedicated DoS mitigation engine (DME) that off-loads high-volume attacks, inspecting without impacting user experience.

What needs improvement?

It does not provide the capability to upload data for blacklisting/whitelisting in bulk. Rather, in cases where many IP addresses need to be blacklisted or whitelisted, either a single IP address has to be added or it needs to be done using a script.

It does not provide default server grouping such as default policy that can be enabled on a Web Server or Application Server IP address.

The dashboard is complicated.

It does not provide real-time traffic details; instead, it only provides logs for blocked traffic. During troubleshooting, a complete log file is required for forensics.

A PCAP file is not provided for individual IP, which is something that should be improved.

What do I think about the stability of the solution?

This is a stable product.

What do I think about the scalability of the solution?

These devices are very much scalable and installed in HA. It provides an automatic passthrough option in the case of ethernet for fiber, where the OEM provides a fiber bypass switch that needs to be installed.

How are customer service and technical support?

Customer support from Check Point and Radware is excellent.

Which solution did I use previously and why did I switch?

We used Cloud Provider Services for DDoS mitigation provided by our ISP. We still use that service for protection against volumetric attacks (Clean Pipe).

How was the initial setup?

The setup was straightforward and the support was excellent.

The configuration requires understanding the services that are hosted against each public IP, as there might be some additional configuration required depending upon the application or services.

What about the implementation team?

This solution was deployed by our in-house team along with the OEM.

What's my experience with pricing, setup cost, and licensing?

The appliance comes with a loaded hardware license, and additional options such as SSL can be purchased and enabled.

Which other solutions did I evaluate?

We evaluated a couple of solutions including Arbor DDoS and a product by F5. We found that Check Point was able to provide us superior capabilities and features on the basis we were evaluating.

What other advice do I have?

My advice for anybody who is considering this product is to evaluate based on the following points:

  • Where you want to place or installed your DDOS appliance.
  • What throughput mitigation is required.
  • Whether the device supports cloud signaling.
  • Determine whether the SSL decryption card is available with the box or needs to be purchased in addition.
  • License and port requirements in terms of whether you need copper or fiber. 

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Carlos Pindado - PeerSpot reviewer
Director of business and digital transformation at SERNIVEL3
Real User
Top 10
Useful single location dashboard controls, stable, and helpful support
Pros and Cons
  • "You have the ability to control everything from one single dashboard."
  • "The solution could improve by being able to handle different use cases."

What is our primary use case?

We use Fortinet FortiWeb for industrial companies. We are making doing network segmentation inside the industrial park, which is quite difficult and we have to design, develop and maintain all of the different kinds of solutions. We brought Fortinet FortiWeb to protect against forbidden access and for special access for providers in the industry.

How has it helped my organization?

We do not use this solution for our organization but for clients' organizations. For example, one customer uses the solution for the protection of all their different applications. Additionally, the solution has protected the servers that are in the DMC, such as services for people in other countries that have to have access.

What is most valuable?

You have the ability to control everything from one single dashboard.

What needs improvement?

The solution could improve by being able to handle different use cases.

For how long have I used the solution?

I have used Fortinet FortiWeb within the past 12 months.

What do I think about the stability of the solution?

The stability is good.

What do I think about the scalability of the solution?

The scalability is quite good. The scalability has been good for each industry. You can integrate Fortinet FortiWeb with all kinds of products of the same vendor. This allows the ability for a lot of different functions that you don't have to have really competent staff because you do not have different vendors. You don't have to call another vendor for solving one ticket or problem. This made everything simple, it was very good.

We have approximately 2,000 people using this solution.

When our customers have acquired more industrial plants we will propose this solution for all those industrial plant customers.

How are customer service and support?

The technical support is good.

I would rate the technical support of Fortinet FortiWeb an eight out of ten.

Which solution did I use previously and why did I switch?

We previously used F5.

How was the initial setup?

The installation was straightforward and it took us approximately one month. There are a lot of services, approximately 15, and other parts to configure.

What about the implementation team?

We used consultants, technicians and, an integrator for the implementation.

We do not need more than three people to do the maintenance and support of Fortinet FortiWeb.

What was our ROI?

We have seen a return on investment. It has been decent but not the best. We choose to work with one large customer and it has been similar to an investment.

What's my experience with pricing, setup cost, and licensing?

We are on an annual license for this solution and the price is approximately €100.

Which other solutions did I evaluate?

We have evaluated a number of solutions, such as Citrix NetScaler.

What other advice do I have?

I would recommend those wanting to implement this solution to use good integrators, there are not too many people who know about this solution. I lived in Spain and there are not too many installations made, it's quite difficult to find people that know a lot about it. It's not a difficult installation and the vendor helped us a lot and is very helpful. You have professional services you can use from the vendor if you choose, but they are quite expensive for customers.

One of the biggest lessons I have learned from using Fortinet FortiWeb is Fortinet helps you a lot. They can develop something specifically for a customers' use case without any costs for them.

I rate Fortinet FortiWeb a nine out of ten.

Which deployment model are you using for this solution?

Hybrid Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
VijayKumar8 - PeerSpot reviewer
Network Security Engineer at Progressive Infotech Pvt. Ltd.
Real User
Easy to use, implement, and deploy
Pros and Cons
  • "It is stable and the performance is good."
  • "They should improve their features, so they easily compare to the competition."

What is our primary use case?

We have a customer that is using Barracuda WAF, and we are the partner, the vendor. We are providing the MSP to the customer and managing their WAF and infrastructure over the cloud.

What is most valuable?

Barracuda WAF is very good product. It is very responsive, and, feature-wise, it's very good and easy to use. 

You can easily deploy any kind of service. 

The technical support is also good. I'm very satisfied.

It is stable and the performance is good. 

The product is scalable.

It's easy to install. 

They offer good reporting.

What needs improvement?

The Barracuda team just needs to improve their product as per their competitors, like F5 and Imperva. They should improve their features, so they easily compare to the competition.

They could always continue to improve their security so that they maintain up-to-date on any current threats. 

For how long have I used the solution?

I've been using the solution for three to four years.

What do I think about the stability of the solution?

The solution has been stable. I haven't encountered bugs or glitches. It doesn't crash or freeze. 

What do I think about the scalability of the solution?

The solution scales quite well. 

How are customer service and support?

Technical support has been very helpful and responsive. 

Which solution did I use previously and why did I switch?

I'm also aware of F5 and Imperva, and they both have very good feature sets.

I've never worked with F5, however, I've heard F5 has more features than Barracuda WAF.

Some customers are using AWS WAF and Azure WAF.

How was the initial setup?

The initial setup is very easy. It will take only a few minutes to install Barracuda WAF if you just implement your services and the URL. After that, you can begin using it.

What's my experience with pricing, setup cost, and licensing?

The pricing depends on the customer. For example, if any customer is using Barracuda WAF and they are comparing it with the AWS WAF, AWS WAF is still a little bit more expensive than Barracuda WAF. And yet, Barracuda WAF has a lot of features that AWS doesn't have. Therefore, the pricing is quite good. 

What other advice do I have?

We're a Barracuda partner. 

WAF is new in the industry. It is very easy to use, implement, and deploy, and you can handle your daily operations very easily. Even the troubleshooting part is simple. 

I'd recommend the solution. If you ever run into issues, it's very easy to contact support and get the help you need. Plus, it is very easy to learn. They have a Barracuda Campus where you can go and get tutorials. All of the videos and documentation you need for any product are right there for you. 

I'd rate the solution nine out of ten. 

Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Flag as inappropriate
Buyer's Guide
Web Application Firewall (WAF)
November 2022
Get our free report covering Cloudflare, F5, Amazon, and other competitors of F5 Silverline Managed Services. Updated: November 2022.
653,522 professionals have used our research since 2012.