Simple Review for F5 Big-IP Advanced Web Application Firewall
A great and simple AWAF onprem solution that is used to secure our Web Application.
Overview
What is F5 Advanced WAF?
F5 Networks offers the Advanced Web Application Firewall (WAF) to provide bot defense, advanced application protection, anti-bot SDK, and other features.
Recent Reviews
Reviewer Pros & Cons
Video Reviews
1 video
Engineer for Cardinal Health Isn't Sugar Coating | F5 Advanced Web Application Firewall Review (WAF)
03:10
Pricing
N/A
Unavailable
What is F5 Advanced WAF?
F5 Networks offers the Advanced Web Application Firewall (WAF) to provide bot defense, advanced application protection, anti-bot SDK, and other features.
Entry-level set up fee?
- No setup fee
Offerings
- Free Trial
- Free/Freemium Version
- Premium Consulting/Integration Services
Would you like us to let the vendor know that you want pricing?
41 people also want pricing
Alternatives Pricing
What is Cloudflare?
Cloudflare, from the company of the same name in San Francisco, provides DDoS and bot mitigation security for business domains, as well as a content delivery network (CDN) and web application firewall (WAF).
Product Details
- About
- Competitors
- Tech Details
- FAQs
What is F5 Advanced WAF?
F5's Advanced WAF is built on F5 technology and goes beyond
reactive security such as static signatures and reputation to
proactively detect and mitigate bots, secure credentials and sensitive
data, and defend against application denial-of-service (DoS). Advanced
WAF redefines application security to address the most prevalent threats
organizations face.
F5 Advanced WAF Features
- Supported: In-Browser Data Encryption - Encrypts data at the app layer to protect against data-extracting malware and man-in-the-middle (MITM) attacks.
- Supported: Behavioral DoS - Behavioral analytics and machine learning provide L7 DoS detection and mitigation.
- Supported: API Protocol Security - Deploys security tools to secure REST/JSON, XML, and GWT APIs. Ingest OpenAPI files to automate configuration of API security.
- Supported: OWASP Top 10 Defense - Complies with OWASP top 10 vulnerability mitigations.
- Supported: Stolen Credential Protection - Protects against brute-force attacks that use stolen credentials.
- Supported: Declaritive API-based deployment and configuration integrates into DevOps CI/CD pipelines.
F5 Advanced WAF Video
F5 DevCentral's John Wagnon provides an overview of F5 Advanced Web Application Firewall (Advanced WAF) that extends security beyond the basic protections traditional WAF's offer.
F5 Advanced WAF Competitors
F5 Advanced WAF Technical Details
| Operating Systems | Unspecified |
|---|---|
| Mobile Application | No |
Frequently Asked Questions
F5 Networks offers the Advanced Web Application Firewall (WAF) to provide bot defense, advanced application protection, anti-bot SDK, and other features.
Imperva Web Application Firewall (WAF), Radware AppWall, and NetScaler ADC are common alternatives for F5 Advanced WAF.
The most common users of F5 Advanced WAF are from Enterprises (1,001+ employees).
Comparisons
Compare with
Reviews and Ratings
(27)Reviews
(1-10 of 10)Companies can't remove reviews or game the system. Here's why
- Simple
- Detail
- Integration with other solution
March 22, 2024
F5 BIG-IP AWAF review
- OWASP Top 10 Protection
- Bot Defense/Bot Protection
- L7 DoS Protection
- API Security
- Mobile SDK
- Mobile SDK integration, as i knew it is done by 3rd party / AppDome
February 16, 2024
F5 Advanced Web Application Firewall Review
- It is one of the better products that protects against the OAuth top 10. It will do SQL injection blocking, cross-site scripting, and other OAuth top 10 protections.
- I'd like to see the licensing model streamlined instead of having this, plus, plus this, plus this to get a working product. I had to go back to the sales team several different times to get a fully deployed product.
February 13, 2024
F5 Advanced WAF! More Advanced than you think
- Brute Force Protection for critical endpoints
- Session Tracking for all those bad actors that never want to leave
- Threat Campaigns and attack signatures for known attack vectors
- Custom rate limiting
- Brute force protection not limited to critical POST endpoints
- Better visibility of blocking and alerting events
February 13, 2024
F5 Big-IP Advanced Web Application Firewall has protected us against numerous threats.
- Policy Configuration
- Root Cause Identification
- The interface could be a little cleaner.
- App Protect needs to mirror the ASM interface.
February 09, 2024
F5 Big-IP Advanced Web Application Firewall Review
- log4j
- springs boot
- Big IQ deployment of new signatures
- Custom signature assistance
- BigIQ capacity
September 15, 2023
F5 Big-IP Advanced Web Application Firewall Review
- So the product definitely is helping us for sudden attacks through DDOS, some injection ingestion into UI URLs, and definitely it's capturing those and I definitely see that as an advantage for us. They can stop the hackers from using our endpoints.
- We would like to see more use of this product in such a way that we can insert JavaScript so that we can understand the bot detection very well. I understand that it does bot detection, with some constraints, but we have to expand that bot detection very well to do fraud detection much better just like Google Recapture.
- Second is the WAF product. Sometimes we are getting false positives just because in the scope of the applications we had to stop certain headers, HTP headers, and we would like to see if there is some kind of a way to enhance the product to use machine learning to do this automatically or suggest to do it automatically in the future.
April 26, 2023
DDoS protection
- prevent SQLi attacks
- API Security
- Bots attack protection
- Client-side protection
- DDoS Protection
- RASP
August 27, 2021
Great product at a great price
Score 10 out of 10
Vetted Review
Verified User
- application filtering
- application firewalling
- Easier interface to configure rules and policies
August 26, 2021
Really Advanced WAF
Score 10 out of 10
Vetted Review
Verified User
- OWASP Top 10 protection
- Bot protection
- Great Visibility
- Detailed Control
- DDoS L7
- Integrated reporting