Likelihood to Recommend Most suited if you have a very strong presence in AWS. It is natively available as an add on service. You can also track the costs overtime based on usage. There is still a lot of improvement on the features and the user interface that can be implemented over time
Read full review It is easy to set up, and within 10 minutes it is up and running. You can add many domains in one dashboard. So no need for a separate Cloudflare account. I can access all my domain DNS, and customize/add it further. For example by adding the Google Webmaster DNS key or my email provider.
Read full review Pros Protect any application against the most common attacks. Provides better visibility of web traffic. It allows us to control the traffic in different ways in which it is enabled or blocked through the implementation of security rules developed personally according to our needs. It is able to block common attacks such as SQL code injection. It allows defining specific rules for applications, thus increasing web security as they are developed. Read full review Registrar and DNS services are impeccable, with registrations done at cost and without ADs. DNS services setting standards for speed of resolution. DDOS protection. With their content distribution network to back them they have the bandwidth and tools to be both proactive and reactive to bad actors. WAF - Their Web Application Firewall helps mitigate common site vulnerabilities and has active zero-day protection running for breaking exploits Read full review Cons AWS WAF is a bit costly if used for single applications. they should provide attack-wise protection, like if my certain type of application is vulnerable to DDOS then I should be able to buy WAF, especially for that attack. CLI tool to test in offline mode if possible. Read full review In some cases, using Cloudflare can actually lead to slower website speeds if the network is congested or if the website's traffic is particularly heavy. Some website owners may find that the level of customization offered by Cloudflare is limited, especially in comparison to other solutions. While Cloudflare is easy to set up and manage, it may be too complex for users who are not familiar with web technologies. Read full review Likelihood to Renew lower cost
Read full review Usability The product is highly scalable. It is easy to configure the rules and thereby helps us to mitigate many vulnerabilities. The interface and programming of the firewall provisions were easy to setup. Amazon clearly spent a lot of time figuring this out and perfecting it. It allows users to do customized configurations based on their needs. It provides protection against a number of security issues like XSS, SQL injection, etc. I would definitely recommend this for protecting your infra as you scale, since this basically protects and filters all requests hitting your application server.
Read full review Everything is extremely concise and all settings apply immediately and take effect globally. There is no reason to explicitly plan/think in terms of individual regions as one would have to traditional cloud offerings (AWS, OCI, Azure). All Cloudflare products integrate seamless as part of a single pipeline that executes from request to response.
Read full review Reliability and Availability In 6+ years of relying on Cloudflare, I think we experienced one or two brief outages that were Cloudflare's fault.
Read full review Performance Their Argo for the global network is the core feature we love.
Read full review Support Rating If you're intending to use AWS WAF, I would say that you absolutely should sign up for support. AWS Support is excellent and they can help you in a really good way to solve your issues.
Read full review We really like to talk to a person on the phone or using chat. But the system is very slow and sending to much email to get the issue solve. Something we don't like to spend time writing on the community forum our issue because we don't want to share detail information of our POC.
Read full review Implementation Rating Very well executed implementation where our team was able to handle the implementation with guidance.
Read full review Alternatives Considered Unlike these other AWS tools, WAF provides real-time traffic control, rules that can be customized according to the needs of the user, and is based on an implementation in the cloud which avoids the use of memory on computers as well as an account with a very affordable cost for any user or company
Read full review Firebase can be a good starter for basic projects but as I scaled up, I found it lacking the maturity Cloudflare has. Naturaly, I opted for Cloudflare for bigger projects. I still use
Firebase , but for small scale hobby projects only.
Read full review Scalability They are built for scale and have the capacity to handle all the traffic we could ever expect to get.
Read full review Return on Investment The overall security of the web application increased effectively after deploying AWS WAF No negative impacts were seen in the business The developers were more confident in the overall security model of the web application being developed and it was easy to integrate WAF into the existing system as the application was also using AWS platform Read full review A lot of requests are cached and so egress costs from downstream providers are mitigated. DDoS protection has also managed to keep our site up and our cloud computing bill down. Setting up a proxy with a worker made putting various Google Cloud Functions running behind a single URL very easy and performant. Plus they offer API Shield on top of this. Read full review ScreenShots