Skip to main content
TrustRadius
F5 Advanced WAF

F5 Advanced WAF

Overview

What is F5 Advanced WAF?

F5 Networks offers the Advanced Web Application Firewall (WAF) to provide bot defense, advanced application protection, anti-bot SDK, and other features.

Read more
Recent Reviews

F5 BIG-IP AWAF review

10 out of 10
March 22, 2024
Incentivized
F5 AWAF gives application layer security protection that covers OWASP Top 10 Web & API, bot protection, mobile sdk, L7 DoS, etc. in …
Continue reading

Great product at a great price

10 out of 10
August 27, 2021
We've been using F5's WAF for many years in our organization. We utilize it for all external facing applications, our ecommerce platform …
Continue reading
Read all reviews

Reviewer Pros & Cons

View all pros & cons
Verified User
Manager in Information Technology
Banking Company, 1001-5000 employees
Verified User
Professional in Information Technology
Telecommunications Company, 501-1000 employees

Video Reviews

1 video

View Playlist
Engineer for Cardinal Health Isn't Sugar Coating | F5 Advanced Web Application Firewall Review (WAF)
03:10
Return to navigation

Pricing

View all pricing
F5 Advanced WAF

F5 Advanced WAF

N/A
Unavailable

What is F5 Advanced WAF?

F5 Networks offers the Advanced Web Application Firewall (WAF) to provide bot defense, advanced application protection, anti-bot SDK, and other features.

Entry-level set up fee?

  • No setup fee

Offerings

  • Free Trial
  • Free/Freemium Version
  • Premium Consulting/Integration Services

Would you like us to let the vendor know that you want pricing?

41 people also want pricing

Alternatives Pricing

Cloudflare

Cloudflare

$20
per month
What is Cloudflare?

Cloudflare, from the company of the same name in San Francisco, provides DDoS and bot mitigation security for business domains, as well as a content delivery network (CDN) and web application firewall (WAF).

Return to navigation

Product Details

What is F5 Advanced WAF?

F5's Advanced WAF is built on F5 technology and goes beyond reactive security such as static signatures and reputation to proactively detect and mitigate bots, secure credentials and sensitive data, and defend against application denial-of-service (DoS). Advanced WAF redefines application security to address the most prevalent threats organizations face.

F5 Advanced WAF Features

  • Supported: In-Browser Data Encryption - Encrypts data at the app layer to protect against data-extracting malware and man-in-the-middle (MITM) attacks.
  • Supported: Behavioral DoS - Behavioral analytics and machine learning provide L7 DoS detection and mitigation.
  • Supported: API Protocol Security - Deploys security tools to secure REST/JSON, XML, and GWT APIs. Ingest OpenAPI files to automate configuration of API security.
  • Supported: OWASP Top 10 Defense - Complies with OWASP top 10 vulnerability mitigations.
  • Supported: Stolen Credential Protection - Protects against brute-force attacks that use stolen credentials.
  • Supported: Declaritive API-based deployment and configuration integrates into DevOps CI/CD pipelines.

F5 Advanced WAF Video

F5 DevCentral's John Wagnon provides an overview of F5 Advanced Web Application Firewall (Advanced WAF) that extends security beyond the basic protections traditional WAF's offer.

F5 Advanced WAF Competitors

F5 Advanced WAF Technical Details

Operating SystemsUnspecified
Mobile ApplicationNo

Frequently Asked Questions

F5 Networks offers the Advanced Web Application Firewall (WAF) to provide bot defense, advanced application protection, anti-bot SDK, and other features.

Imperva Web Application Firewall (WAF), Radware AppWall, and NetScaler ADC are common alternatives for F5 Advanced WAF.

The most common users of F5 Advanced WAF are from Enterprises (1,001+ employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(27)

Reviews

(1-4 of 4)
Companies can't remove reviews or game the system. Here's why
March 22, 2024

F5 BIG-IP AWAF review

Verified User
Professional in Information Technology
Telecommunications Company, 501-1000 employees
Score 10 out of 10
Vetted Review
ResellerIncentivized
Use Cases and Deployment Scope
F5 AWAF gives application layer security protection that covers OWASP Top 10 Web & API, bot protection, mobile sdk, L7 DoS, etc. in addition to their network security/NGFW protection
Pros and Cons
  • OWASP Top 10 Protection
  • Bot Defense/Bot Protection
  • L7 DoS Protection
  • API Security
  • Mobile SDK
  • Mobile SDK integration, as i knew it is done by 3rd party / AppDome
Likelihood to Recommend
BIG-IP AWAF fits in any scenario for protection web application and API layer protection
Return on Investment
  • Protect customer's critical/business impact application from web application/API attacks
Alternatives Considered
AWAF provides most complete web application and API protection; including L7 DoS; in custimer's multi cloud deployments whether on-premises, public cloud, private cloud, etc.
Other Software Used
F5 BIG-IP DNS, F5 BIG-IP Local Traffic Manager (LTM), F5 BIG-IP Advanced Firewall Manager (AFM)
February 13, 2024

F5 Advanced WAF! More Advanced than you think

Verified User
Engineer in Information Technology
Financial Services Company, 5001-10,000 employees
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
We use the F5 BIG-IP Advanecd WAF every day. It protects us every day against constant bad actors and their attacks, web scraping and just bad traffic probing. We are currently using 80% or more of its capabilities and allows us security responsible teams to have a good night sleep. We rely on it when it matters the most and gives us enough flexibility to work around and mitigate different attack vectors that we always see. We have a publicly facing web application and APIs that get all these undesired visits. Advanced WAF makes our day to day tasks a lot easier and gives us the priceless peace of mind our engineers need at night.
Pros and Cons
  • Brute Force Protection for critical endpoints
  • Session Tracking for all those bad actors that never want to leave
  • Threat Campaigns and attack signatures for known attack vectors
  • Custom rate limiting
  • Brute force protection not limited to critical POST endpoints
  • Better visibility of blocking and alerting events
Likelihood to Recommend
Advanced WAF is well suited for protection against account enumeration attacks, protection against known and new increasing attack vectors through out of the box attack signatures and threat campaigns. Also, up to date and accurate IP intelligence database to block based on known IP reputation.
Return on Investment
  • Every day, it helps prevent information leakage
  • Every day, it prevents DOS attacks
Alternatives Considered
F5 BIG-IP advanced WAF will provide just enough flexibility to protect areas and services the way others just can't.
Other Software Used
F5 BIG-IP Local Traffic Manager (LTM), F5 BIG-IP DNS, F5 BIG-IP Advanced Firewall Manager (AFM)
February 13, 2024

F5 Big-IP Advanced Web Application Firewall has protected us against numerous threats.

EE
Eric Evans
Security Architect
Evergy (Utilities, 1001-5000 employees)
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
We have used F5 BIG-IP Advanced Web Application Firewall for protecting our apps both on prem and in the cloud. The enhanced features and granularity are far superior to native cloud WAFs. The ability to find the root cause of a session utilizing the SupportID is key in finding root cause for unexpected issues.
Pros and Cons
  • Policy Configuration
  • Root Cause Identification
  • The interface could be a little cleaner.
  • App Protect needs to mirror the ASM interface.
Likelihood to Recommend
Return on Investment
  • F5 BIG-IP Advanced Web Application Firewall has protected us against numerous threats.
Alternatives Considered
F5 WAF is far superior to other cloud based native apps.
Other Software Used
F5 BIG-IP Local Traffic Manager (LTM)
April 26, 2023

DDoS protection

Josué Ríos | TrustRadius Reviewer
Josué Ríos
Sales Engineer
Licencias OnLine (Information Technology & Services, 201-500 employees)
Score 9 out of 10
Vetted Review
ResellerIncentivized
Use Cases and Deployment Scope
I use to propose F5 WAF to protect applications and APIs, because nowadays there are many applications which have open source code or third code that make then more vulnerable and for the fact that there are many types of attacks like SQLi, XXS, DDoS, bad bots attacks, client side attack and many more.
Pros and Cons
  • prevent SQLi attacks
  • API Security
  • Bots attack protection
  • Client-side protection
  • DDoS Protection
  • RASP
Likelihood to Recommend
It could be very suitable for all of those applications which use many APIs or microservices. It could not be appropriate to all of those applications which are not expose to the internet.
Most Important Features
  • scalability
  • agnostic
  • stronger security
Return on Investment
  • the applications are always on
  • business continuity
Alternatives Considered
because its integration are very well, making a stronger solutions to cover many more attacks.
Other Software Used
Return to navigation