F5 Networks offers the Advanced Web Application Firewall (WAF) to provide bot defense, advanced application protection, anti-bot SDK, and other features.
N/A
Radware Alteon
Score 9.0 out of 10
N/A
Radware Alteon, from Israeli company Radware, is an application delivery controller.
I believe that in the case of Big-IP F5, it has a lot of power, a lot of features including the VPN features and also the evaluation of security posture of the devices that connect through VPN. That's very solid and that's something that is not found in all the WAF solutions …
Sure! Here's a made-up but professional response you can use or adapt depending on the context (e.g., a report, RFP, internal justification, etc.):
Describe how F5 BIG-IP Advanced WAF stacks up against them and why you selected F5 BIG-IP Advanced WAF.
AWAF provides most complete web application and API protection; including L7 DoS; in custimer's multi cloud deployments whether on-premises, public cloud, private cloud, etc.
Currently, we are using our IPS tools and IDS tools, but for the applications, we also use endpoint detection and those kinds of tools. But the firewall is actually a very important tool rather than those products. Because it exactly happens at the layer that we really want it …
F5 WAF provides much more control and has a lot of features that can be used to protect your applications. You can have granular configuration settings per application and disable attack signatures on very specific scenarios whenever is needed. Also, the logs are very detailed …
We moved away from Alteon to F5 BigIP LTM and just by swapping out the hardware, we saw 40% speed increase in our applications. Everything else is much improved as well, from the web interface to the command line to the API.
Advanced WAF is well suited for protection against account enumeration attacks, protection against known and new increasing attack vectors through out of the box attack signatures and threat campaigns. Also, up to date and accurate IP intelligence database to block based on known IP reputation.
So the product definitely is helping us for sudden attacks through DDOS, some injection ingestion into UI URLs, and definitely it's capturing those and I definitely see that as an advantage for us. They can stop the hackers from using our endpoints.
The UI for events. E.g., clicking the "Accept" button does nothing.
Traffic learning suggestions are often very incorrect. We were originally suggested to use "Automatic" learning, and had to completely scrap the policy due to the suggestions.
"All in one" dashboard for viewing application URL/parameter overrides per policy.
The software web application is beyond terrible, in most of the cases the web was broken or did not have similar functionality the command line interface had.
The command line interface wasn't a natural looking interface, it was very fumbled and while it ran on Linux, the interface was all menus and sub-menus.
When enabling different pools for different web services, when a new pool was activated, the old pool connections were all reset instead of allowing HTTP sessions to naturally expire.
Most* of it is very intuitive and easy to use. The "Help" section is fairly fantastic. See some of my other comments about things like the "Traffic Learning" section being wildly wrong sometimes, and also the event logs with UI buttons that don't do anything. Overall though, it's an excellent product.
I believe that in the case of Big-IP F5, it has a lot of power, a lot of features including the VPN features and also the evaluation of security posture of the devices that connect through VPN. That's very solid and that's something that is not found in all the WAF solutions and so I haven't seen that in Azure.
We moved away from Alteon to F5 BigIP LTM and just by swapping out the hardware, we saw 40% speed increase in our applications. Everything else is much improved as well, from the web interface to the command line to the API.