F5 BIG-IP vs. Imperva Web Application Firewall (WAF)

Application delivery of both simple and advanced applications. It's easy to handle certificate management that do require individual certificates to be installed on each backend server, you can just install the certificate on the F5 BIG-IP and use for multiple backends. Also adding WAF is as simple as adding a generic policy and you will cover 80% of the scenarios.

Incentivized

Imperva web application firewall does a great job in giving us control over access to our public web servers. With our regular hosting provider, we couldn't block access based on geography, or really anything. So we had to rely on traditional access controls to protect the data. But with the WAF, we can block countries such as North Korea, or we could stop any SQL Injection attempts, or even do a temporary block of IP in the case of detected brute-forcing.

• It's reliable. We've had very little problems with the technology. Performance is always right on. Metrics are great. They come out of it. We'd like to do more probably with it in the future as we start to grow a lot more.

Incentivized

• Alert Aggregation - Correlates different violations into perceived correlated attacks.
• Ease of deployment - as one of the only WAFs that allow bridge mode deployment, this can be deployed with without downtime and no Network Architecture modifications. If the need for proxy is required at a later time, Transparent Reverse Proxy can be deployed within seconds and minimal configuration.
• Custom Policies - Custom security policies are easy to configure.
• Reporting - There are a good amount of pre-configured reports available by default.

Incentivized

• Recently we have been deploying F5 web application firewall and we have started the deployment. We have already moved applications out there, but we are not yet to the point wherein I could comment any positive feedback or any negative feedback because we are still going through it, right. But as far as I'm concerned, I don't see any drawbacks or any shortcomings on the F5 product lineup.

Incentivized

• The UI can use a little work (but is largely decent)

Stability of product and easy way to have account manager contact. F5 support team is also always available to help with major issues. Last year during the major OS upgrade F5 team and F5 leadership always shared clear information and F5 team was dedicated to help us to have it closed in record time

Incentivized

It actually satisfies the use cases, but I would like to know what it can do more than just the use cases, which is what I'm looking for, to talk at some point with somebody and figure out what to do next. We probably maybe could be able to do more that we don't know yet.

Incentivized

There are just a couple of points that are hard to find, that probably could be elsewhere. But these are minor; everything else is right where you'd expect it to be.

I've supported F5 for three different companies. Our F5 support has been very consistent, regardless who the customer is. F5 technicians are very experienced and provide good support, even when issues are more related to knowledge than they are with the ability of the product to do what you need it to do.

Incentivized

We haven't needed support from Imperva since implementation. But during that time, their personnel were very quick to respond to questions. Since then, it's been largely doing its thing for us (which is exactly what we'd hoped).

Practical cases and hands on , many hours of training with tipical cases

Incentivized

implementation is fine

Incentivized

That's the one thing that really stood out. It was a lot easier to use from an administrator standpoint, so I think that's the one thing that really made our team decide to go with this product versus another competitor. Just ease of use.

Incentivized

Ultimately, it was the easiest to work with that was still a "known" company (we've been burned too many times by up-and-comers). We needed something that gave us a lot of control but then didn't need its handheld on a daily basis. Imperva gives us a lot of that and we are still able to navigate it with ease.

• The F5 BIG-IP has improved all our load balancing needs, we have over 400 LTM VIPs in our environment this all use to be done with DNS round Robin configurations.
• we have created unique APM solutions to support our external customer base

Incentivized

• Meet compliance requirements - Check.
• Better Insight into web application - Absolutely great, checks all the traffic against RFC standards and will alert on common development mistakes that duplicate application traffic or provide attack vectors for potential attackers.
• Have had several issues blocking a customer without producing alerts, while it happened only one week out of 2 years of working with the devices, it did produce a lot of headaches.

Incentivized