Skip to main content
TrustRadius
AWS WAF

AWS WAF

Overview

What is AWS WAF?

Amazon Web Services offers AWS WAF (web application firewall) to protect web applications from malicious behavior that might impede the applications functioning and performance, with customizable rules to prevent known harmful behaviors and an API for creating and deploying web…

Read more
Recent Reviews
Read all reviews

Reviewer Pros & Cons

View all pros & cons
Verified User
Engineer in Information Technology
Consumer Services Company, 501-1000 employees
Return to navigation

Pricing

View all pricing

Resource Type - Request

$0.60

Cloud
per 1 million requests

Resource Type - Rule

$1.00

Cloud
per month (prorated hourly)

Resource Type - Web ACL

$5.00

Cloud
per month (prorated hourly)

Entry-level set up fee?

  • No setup fee

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services
Return to navigation

Product Details

What is AWS WAF?

AWS WAF Technical Details

Deployment TypesSoftware as a Service (SaaS), Cloud, or Web-Based
Operating SystemsUnspecified
Mobile ApplicationNo
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(28)

Attribute Ratings

Reviews

(1-3 of 3)
Companies can't remove reviews or game the system. Here's why
April 26, 2023

Using AWS WAF -- a native solution

Verified User
Engineer in Information Technology
Consumer Services Company, 501-1000 employees
Score 8 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
Edge Security Control from the outside. Used to allow legitimate secure connections to you web application servers. Encryption, Mutli Factor Authentication and allowable connections are key. One of the advantages is that it is a solution that is native to the AWS Cloud platform. It is a scaleable and can meet the performance requirements.
Pros and Cons
  • Perfomance
  • Scalability
  • Uptime
  • Need to provide improved dashboard metrics
  • Easy to navigate for troubleshooting purposes
  • Consolidated Reporting
Likelihood to Recommend
Most suited if you have a very strong presence in AWS. It is natively available as an add on service. You can also track the costs overtime based on usage. There is still a lot of improvement on the features and the user interface that can be implemented over time.
Most Important Features
  • Performance
  • Scalability
  • Protection
  • Availability
Return on Investment
  • Performance has been relatively good
  • Need to implement more features
  • Quick and easy setup
Alternatives Considered
Easy of use. Setup and configuration is fairly quick. There are the usual advantages of it being a cloud solution where you can buy into the solution, configure it and set it up and get it up and running. If you are already a subscriber to AWS, having a native service has its advantages.
Other Software Used
September 12, 2022

Easiest implantation of Firewall out there

Zeel Pandya | TrustRadius Reviewer
Zeel Pandya
SAP ABAP Consultant
AeonX Digital Solutions (Computer Software, 51-200 employees)
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
We have several web applications running on AWS build on Laravel so we inherently have a need to secure it. DDOS attacks are common among them. as we mounted an AWS WAF before our load-Balancer. since then we have never faced any issue regarding web application security. Highly recommend it if you run critical e-commerce applications.
Pros and Cons
  • DDOs attack prevention
  • Cost saving if you have multiple web applications.
  • One stop solution so no further efforts needed. almost everything can be handle with AWS WAF.
  • AWS WAF is a bit costly if used for single applications.
  • they should provide attack-wise protection, like if my certain type of application is vulnerable to DDOS then I should be able to buy WAF, especially for that attack.
  • CLI tool to test in offline mode if possible.
Likelihood to Recommend
If your firm primarily focuses on web development, this should be a go-to solution. On top of that, if you're primarily working in the E-commerce sector, where frequent monetary transactions occur, you'll find your self needing that extra security because of increased risk of cyber attacks. Other than that, it should only be considered if client has good budget and is asking for extra security.
Most Important Features
  • DDOS protection
  • Ability to mount in front of Load balancer
  • AWS Managed service means hassle free installation
Return on Investment
  • Somewhat costly if specific needs are not there.
  • If security is concerned than comparatively is beneficial.
  • All those price that spent on AWS WAF in return gets saved in man hours.
Alternatives Considered
Comparatively, AWS WAF is far more prevalent in modern age web application as most of the High-Traffic E-commerce sites are moved on AWS. Due to this most developers are familiar with WAF, in addition its pretty easy comparatively as well. So other solutions may only come into the picture where some particular scenarios arise.
Other Software Used
August 27, 2021

My review on AWS Web Application Firewall

Vinit Sharma | TrustRadius Reviewer
Vinit Sharma
Network Administrator
Infosys (Information Technology & Services, 10,001+ employees)
Score 10 out of 10
Vetted Review
Verified User
Use Cases and Deployment Scope
Web applications are very vulnerable to attacks and deploying your applications from the cloud can expose them to even greater risk. To help secure their cloud web apps, administrators will use a Web Application Firewall. We deployed all the applications and servers on the AWS cloud, so we need more security. That is why we are using the AWS Web Application Firewall. WAF provides a lot of features that will secure your applications. We have been using cloud services for the last 3 years and most of the services are running on AWS. In our condition we need a lot of security.
Pros and Cons
  • Web traffic filtering
  • Bot Control
  • Real-time visibility
  • Easy to monitor web traffic
  • Prevent against any type of attack, like SQL code injection
  • Easy to create the rules
  • Easy to filter the packet as per your requirement
  • Less documentation available for help in configuration and maintenance
  • AWS should work on their technical support
  • High price
Likelihood to Recommend
If you have deployed your servers and application and have them running through the cloud, then you should choose the AWS WAF for security. This is very good cloud firewall which will protect your application and servers from any type of attacks. On the cloud, everyone can easily reach your server, so you need to add more security. AWS WAF provides you a lot of features, which will help you to protect your cloud servers and applications from external attacks.
Most Important Features
  • Protection against web attacks
  • Web traffic visibility
  • Easily monitor, block, or rate-limit bots
  • Security integrated
Return on Investment
  • Very advanced features for protection against any type of attacks
  • Day-to-day updates for any type of cyber attacks
Alternatives Considered
We have never used any other web application firewall.
Other Software Used
Return to navigation