2019-03-11T07:21:00Z
it_user434868 - PeerSpot reviewer
Senior Director of Delivery at a tech services company with 51-200 employees
  • 0
  • 196

What is your primary use case for AWS WAF?

How do you or your organization use this solution?

Please share with us so that your peers can learn from your experiences.

Thank you!

15
PeerSpot user
15 Answers
DanielSeco - PeerSpot reviewer
Jefe subdepartamento Operaciones at a government with 10,001+ employees
Real User
Top 5
2021-04-17T22:54:27Z
Apr 17, 2021

I primarily use the solution as a gateway service and a transaction portal.

Search for a product comparison
Rodrigo Garcia - PeerSpot reviewer
Physical Designer at Semtech Corporation
Real User
2020-11-11T00:41:20Z
Nov 11, 2020

The regular use case is basically for blocking or giving access to different vendors to different domains. We also use it for managing and identifying the attacks and new rules that we should implement for our public domains to tune up the application firewall or tool, whatever makes more sense for us. We're using it through the web console and API. We're just using the managed service.

RH
President at a tech services company with 1-10 employees
Real User
2020-09-13T07:02:26Z
Sep 13, 2020

My whole business is cloud cost management. What I do is help people manage expenses. That encompasses everything from cleaning up software as a service subscriptions to optimizing AWS. My use cases for AWS WAF have to do with cloud research only.

Vinamra Singhai - PeerSpot reviewer
Principal Engineer at Nineleaps Technology
Real User
2020-08-05T06:59:31Z
Aug 5, 2020

There are two things that we primarily use AWS WAF (Amazon Web Services Web Application Firewall) for. One use is within the company. Within the company, the intended use is to deploy our applications. It is like working with the cloud. We can start an application in S3 (Simple Storage Service), and use profiles for access to data. The other use is that most of our clients use a similar infrastructure. They are either using AWS, Azure or maybe Google Cloud Platform (GCP). We deploy this solution for them. Both uses are different. One is for the cloud solutions like AWS, Azure and GCP, and one is for the local server access. That is how you want to secure a server. You are securing a server, database, app servers, and ATA gateways. The other one is for implementing security for the AWS. You want to have both running side-by-side. Let me give you an example. Suppose, most of the people working for your company are connected from external locations with company-provided laptops or systems. I want to check all devices to make sure that they are being used in a secure way and not creating any breach of security. Those checks cannot be taken care of reliably from the AWS perspective. This is why you need two solutions.

it_user1376373 - PeerSpot reviewer
Cloud security Consultant at 8KMiles
MSP
2020-07-05T09:38:02Z
Jul 5, 2020

A primary use case example is when a customer from the cloud wants to expose his applications to the internet. We make sure that the clients, the applications, whatever they're trying to export, are public but that it's not going directly public. We make a backup, for instance, to protect the sellers and applications from security checks, etc.

it_user753234 - PeerSpot reviewer
IT Governance at Globecast
Real User
2020-03-22T06:49:00Z
Mar 22, 2020

Our primary use case is to protect our internal web solution. We use it to have an internal application for our customers. We are an SME worldwide company, so we have some internal website solutions architects that use this as an internal portal to the internet. We apply a WAF front to our web application.

Learn what your peers think about AWS WAF. Get advice and tips from experienced pros sharing their opinions. Updated: December 2022.
655,994 professionals have used our research since 2012.
JP
Principal Consultant at a tech services company with 10,001+ employees
Consultant
2020-02-05T08:05:09Z
Feb 5, 2020

We are a technical services company and this is one of the solutions that we have helped implement for our clients. We stopped using AWS about six months ago and as such, we are not currently using the AWS Web Application Firewall.

MohammedAbourafia - PeerSpot reviewer
Manager, IT Infrastructure & Information Security at flyadeal
Real User
2019-12-05T11:14:00Z
Dec 5, 2019

I'm a manager and in charge of IT infrastructure and information security for an airline company. We're a customer of AWS WAF. We use the product to protect the websites that our customers access to book flights. It provides the sites with DDoS protection and OWASP top 10 application security.

ND
Head of Digital Product Office at a energy/utilities company with 10,001+ employees
Real User
2019-09-08T09:50:00Z
Sep 8, 2019

We primarily use the solution for its rich insights to improve customer experience.

AdviseIT67 - PeerSpot reviewer
Cloud Architect at Tata Consultancy Services
Real User
Top 20
2019-09-05T16:30:00Z
Sep 5, 2019

The primary use of the solution is for perimeter security. I use it to secure my application and infrastructure.

CL
Senior Information Security Specialist at a tech services company with 1,001-5,000 employees
Real User
2019-03-11T07:21:00Z
Mar 11, 2019

It is our web application firewall.

VU
Founder at a consultancy with 1-10 employees
Consultant
2019-03-11T07:21:00Z
Mar 11, 2019

The primary use case is application security. We are using the latest version.

BM
Engineer at Cradlepoint
Real User
2019-03-11T07:21:00Z
Mar 11, 2019

We use it to protect our backend services.

FP
Developer at a tech services company with 1-10 employees
Real User
2019-03-11T07:21:00Z
Mar 11, 2019

Application security is our primary use case.

AS
Network Analyst
Real User
2019-03-11T07:21:00Z
Mar 11, 2019

It's all about the security of the cloud system.

Related Questions
Netanya Carmi - PeerSpot reviewer
Content Manager at PeerSpot (formerly IT Central Station)
Dec 1, 2021
How does AWS WAF compare to Microsoft Azure Application Gateway? Which is better and why?
See 1 answer
Dovid Gelber - PeerSpot reviewer
Tech blogger
Dec 1, 2021
Our organization ran comparison tests to determine whether Amazon’s Web Service Web Application Firewall or Microsoft Azure Application Gateway web application firewall software was the better fit for us. We decided to go with AWS WAF, which we found to be a highly scalable solution. In its cloud version, AWS WAF makes use of a concept known as auto-scaling. What this means is that users have the ability to scale the program up or down according to what their needs happen to be at the time. The software does this automatically, without requiring administrators to provide any outside input. This can save organizations a great deal in terms of time and resources. It is true that AWS WAF lacks the ability to integrate with some third-party products. However, even without this ability to integrate, its automated scaling makes it quite robust. Microsoft Azure Application Gateway is also quite scalable. That being said, it is not as effective in this regard as AWS WAF. The scaling provided by Microsoft Azure Application Gateway is not automatic. Administrators are required to manually scale up the product themselves if they want it to handle a larger load. This takes up time and resources that could be spent on other things. AWS WAF has a robust set of security features. Its firewall can protect against different types of cyber-attacks. It can repel both scripting and database-injection attacks. When it does so, it redirects the attack to a Fail2ban program, which marks the IP addresses where the attack originates as unsafe and bans them from the system. This can provide administrators with peace of mind. Microsoft Azure Application Gateway provides administrators with an effective way to protect their systems against attacks. However, it lacks security tools, such as the ability to block harmful IP addresses. As a result, there will be a greater expenditure of time dealing with all of the threats that the program has not simply blocked. Conclusion: While Microsoft Azure Application Gateway is a fairly competent product, we found AWS WAF to be a superior product. AWS WAF’s automated scaling and exceptional security package make it a more robust program.
JT
DevOps Senior Engineer at Fingerhut
Oct 21, 2021
Hello, Has anyone migrated from Akamai services to AWS Cloud front and WAF? Can you please share your experience on this process and on using Amazon CloudFront and AWS WAF? Thanks for the help!
Explore this product
Download Free Report
Download our free AWS WAF Report and get advice and tips from experienced pros sharing their opinions. Updated: December 2022.
DOWNLOAD NOW
655,994 professionals have used our research since 2012.