F5 Distributed Cloud WAF leverages F5's Advanced WAF technology, delivering WAF-as-a-Service and combining signature- and behavior-based protection for web applications. It acts as an intermediate proxy to inspect application requests and responses to block and mitigate a broad spectrum of risks stemming from the OW ASP Top 10, persistent and coordinated threat campaigns, bots, and layer 7 DoS.
We use bigIP primarily for on-premises infrastructure and protection against volumetric DDoS attacks, including F5 Distributed Cloud WAF (Web Application Firewall).
El bigIP lo utilizamos más para infra on premise, proteccion de ataques volumetricos de DDoS que inculye F5 …
We evaluated various application and API protection alternatives, including traditional appliance-based solutions and cloud-native platforms. F5 Distributed Cloud WAF stood out for its ability to provide unified protection for applications distributed across different …
I prefer F5 Distributed Cloud over BIG-IP is due to we have multiple BIG-IPs, and login in to each one and administer them individually is time consuming. Versus maintaining visibility globally on just one dashboard. In addition, the WAAP services in Distributed Cloud is …
Easy to use, clean interface and Dashboard. SaaS offering, easy to onboard. Do not have to worry about upgrades and updates as this is taken care by F5. No worries about operating system bugs and fixes.
ModSecurity (open-source) and F5 (commercial, including NGINX App Protect) are Web Application Firewalls (WAFs) protecting against Layer 7 attacks. ModSecurity offers a free, flexible, OWASP-based solution, while F5 provides enterprise-grade performance, advanced automation, …
we selected F5 Distributed Cloud WAF (Web Application Firewall) for its strong threat protection centralized management ,and effective support and for hybrid cloud enviroments
Not bad, however there were services that were provided by DOS arrest that are automated through F5 cloud and would require attention and expertise to mimic. It does offer the same but must be configured not offered as a bundled configuration.
It is doing its job effectively, and its scalability is superb. So, if you have a mixed environment with cloud and on-premise systems to protect this product, provide a solution to the challenge. However, its management is more suited to DevOps teams rather than to the ones responsible for on-premise systems, making the management a bit more complex.
Layer seven attacks are becoming far more common. Traditionally it was always layered three, layer four, where you get an additional firewall, but with the application layer attacks become more frequent, more popular, et cetera. So having the web application firewall protecting us, and then with the recent Log4j, that's the most recent use case when it gave us that instant level of protection whilst we remediated the Log4j that we had that and the F5 Distributed Cloud WAF was protecting us.
I have a great relationship with the account manager, my account manager, and I think he drives the best price possible, um, for me, and I'm happy with that price.
F5 Distributed Cloud WAF is always innovating and evolving.
We run a very competitive proof value where we run numerous competitors against each other, and then we evaluate from that and then make the selection, and F5 Distributed Cloud WAF was the winner.
We gave it an 8 because it protects our web apps well and is reliable. The WAF is flexible and meets most of our needs. It could improve in user interface and make integrations easier, but overall, it’s a solid and effective security tool for us.
I believe is a solution that was designed from the start to be simple and easy to use. Coming from Imperva, it simply eased the burden and complexity of managing and securing our apps on different environments (cloud and on-prem). It easy to scale and very quick to deploy (as a cloud waf should be), provide us with DevOps integrations, visibility and automatic insights from multiple events that guarantee peace of mind for us analysts and opp managers.
The other one that I've used in the past, they're very similar and I haven't used it recently, so I can't do a side-by-side comparison today. But I can say that F5 does everything we want it to do consistent with what this other product did do and it's got enhanced features and of course we have a long history with F5 as a product set in general.
The biggest gain for us was speed. Before F5 Distributed Cloud WAF, onboarding a new app to our WAF stack meant manual rule tuning, traffic sampling and regression testing. Right now, we spin up a service, tag it with the right policy and its ready (production ready) within hours
