F5 WAF
Migrate web app attacks and vulnerabilities with comprehensive security controls and uniform policy and observability via SaaS delivered …
Overview
What is F5 Distributed Cloud WAF (Web Application Firewall)?
F5 Distributed Cloud WAF leverages F5's Advanced WAF technology, delivering WAF-as-a-Service and combining signature- and behavior-based protection for web applications. It acts as an intermediate proxy to inspect application requests and responses to block and mitigate a broad spectrum of…
Recent Reviews
Awards
Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards
Reviewer Pros & Cons
Associate Director of Technology
CGS International Securities (Financial Services, 5001-10,000 employees)
Video Reviews
1 video
Director of Engineering Solutions with Nexum Securities Dishes Truth | F5 BIG-IP WAF
02:56
Product Demos
Distributed Cloud Services Demo
www.f5.com
Product Details
- About
- Integrations
- Competitors
- Tech Details
- Downloadables
- FAQs
What is F5 Distributed Cloud WAF (Web Application Firewall)?
F5 Distributed Cloud WAF leverages F5's Advanced WAF technology, delivering WAF-as-a-Service and combining signature- and behavior-based protection for web applications. It acts as an intermediate proxy to inspect application requests and responses to block and mitigate a broad spectrum of risks stemming from the OW ASP Top 10, persistent and coordinated threat campaigns, bots, and layer 7 DoS.
Benefits
F5 Distributed Cloud WAF is designed to ease the burden and complexity of consistently securing distributed web apps by delivering:
- Simplified operations: SaaS-delivered WAF that’s set up, deployed, managed and scale across clouds, on-premises data centers, and edge sites.
- DevOps agility + SecOps control: Delivers the programmability that DevOps needs combined with the efficacy and oversight that SecOps mandates, enabling faster application delivery and release cycles.
- Reduced time to resolution: Improves visibility and insight across WAF and DDoS security events, and into app performance, including intuitive drill-down capabilities.
- Comprehensive protection with fewer false positives: Utilizes both signature-based and AI/ML based detection techniques with automatic signature tuning to ensure maximum efficacy and reduced SecOps workloads.
F5 Distributed Cloud WAF (Web Application Firewall) Features
- Supported: Attack signature engine: Captures Common Vulnerabilities and Exposures (CVEs) plus known vulnerabilities and techniques identified by F5 Labs, including Layer 7 DDoS, threat campaigns, bots, and automated threats.
- Supported: Advanced behavior engine: Leverages AI/ML to monitor and score client interactions, deciphering intent based on the number of WAF rules hit, forbidden access attempts, login failures, and error rates, to help identify an app’s highest priority threats.
- Supported: Service policy engine: Enables micro segmentation and advanced security at the application layer, utilizing IP reputation and allow/deny lists to block clients with known bad TLS fingerprints, ASNs from suspicious countries.
- Supported: Automatic attack signature tuning: Determines if a signature-identified attack is really a threat, helping reduce the number of false positives.
- Supported: Streamlined set-up and management: Deploy through a simple UI or automate via APIs including best- practice default protections and the flexibility to create custom rules.
- Supported: Multi-app dashboards: Observability via a single dashboard with a 360-degree view of app performance and security events across distributed applications.
F5 Distributed Cloud WAF (Web Application Firewall) Videos
F5 Distributed Cloud WAF Demo
F5 Distributed Cloud API Security
F5 Distributed Cloud Bot Defense
F5 Distributed Cloud DDoS Mitigation
F5 Distributed Cloud WAF (Web Application Firewall) Integrations
F5 Distributed Cloud WAF (Web Application Firewall) Competitors
F5 Distributed Cloud WAF (Web Application Firewall) Technical Details
| Deployment Types | Software as a Service (SaaS), Cloud, or Web-Based |
|---|---|
| Operating Systems | Unspecified |
| Mobile Application | No |
F5 Distributed Cloud WAF (Web Application Firewall) Downloadables
Frequently Asked Questions
F5 Distributed Cloud WAF leverages F5's Advanced WAF technology, delivering WAF-as-a-Service and combining signature- and behavior-based protection for web applications. It acts as an intermediate proxy to inspect application requests and responses to block and mitigate a broad spectrum of risks stemming from the OW ASP Top 10, persistent and coordinated threat campaigns, bots, and layer 7 DoS.
Cloudflare, Fastly Edge Cloud Platform, and Imperva Application Firewall are common alternatives for F5 Distributed Cloud WAF (Web Application Firewall).
The most common users of F5 Distributed Cloud WAF (Web Application Firewall) are from Enterprises (1,001+ employees).
Comparisons
Compare with
Reviews and Ratings
(103)Reviews
(1-25 of 51)Companies can't remove reviews or game the system. Here's why
April 06, 2024
F5 WAF
Migrate web app attacks and vulnerabilities with comprehensive security controls and uniform policy and observability via SaaS delivered WAF that is quick to set up and deploy, and easy to manage and scale across any environment. And simply app security by seamlessly integrating protections into the development process with core security functionality.
- Easy to use
- Reduce the time
- Save the cost
- Comprehensive protection
- Flexible and agility
- None
- None
March 22, 2024
F5 Distributed Cloud WAF
To protect our domain name
- To protect domain name
- Easier to deploy
- Hybrid
- Have better and detail dashboard
- More customized
March 22, 2024
Try and buy is best choice for your app
Protect our App in any where, quickly deployment and leverage all features of F5 Distributed Cloud WAF.
- Easy to deployment to protect your app in anywhere
- F5 Distributed Cloud WAF features is the same Big-IP
- Don't care performance
- One console with BIG-IP on premise
- More Hub (DC) in the world
March 22, 2024
Amazing F5
We use F5 WAF to secure the services we host over the internet. Sometime we do have issues with SSL encryption.
- DDos Protection
- API security
- SSO integration
March 22, 2024
Review
Deploying WAF instances in a distributed manner across multiple locations or
cloud environments to protect web applications and APls.
Configuring security policies to mitigate various types of attacks and vulnerabilities.
Protection against cyber threats: It helps in defending against a wide range of cyber threats, including OWASP Top 10 vulnerabilities, DDoS attacks, SQL injection, cross-site scripting (XSS),
- Protect against cyber threat
- API protection
- Central management
March 22, 2024
F5 app worlds
It help to prevent attack from public internet
- It help prevent api attack
- It help prevent AI Bot attack
- It help prevent ddos attack
- Less analysis info on dashboard
- Not easy to set up
March 22, 2024
Great
We use XC WAAP and mostly use for the WAF and also API Protection
- it is quick easy using with the WAF template.
- it is powerful in the bot defense
- we can monitor realtime about our application vulnerability
- these can protect our multicloud application and reduce the complex and can do the single pane of glass management.
March 22, 2024
F5 review
we used WAF as a measure product to secure our web application inside our organisation.It is a very helpful product to isolate and secure all our application.
- secure web application
- to prevent from any malware attack
- to provide the secure environment
- WAF should use more filter to isolate the paticular issue
- WAF should be detect and filter the malware attack and notify
February 16, 2024
F5 Distributed Cloud WAF (Web Application Firewall) Review
So it's the upgraded version of ASM, which is the actual layer seven protection on applications. So what it does now with the cloud base and the way it's set up, distributed cloud, you have that now. Capabilities in the cloud are what happens. So anytime you need to protect an app or lockdown or do anything with that, that's where it comes into place. For layer seven.
- So if an application is getting attacked, this can protect that application from hackers or DDoS or any of those other areas.
- Actually right now there's not much because it's handling everything we need to within the layer seven suite. Probably just getting it out there more to the customers is the biggest thing. That's where it needs to be improved. Education.
February 13, 2024
All-in-one approach in multiple security vectors
For all types of publications, both critical and internal, security is the first thing taken into account in our organization. Applying all the security layers that the product offers from DNS, WAF, APM I really consider it to be an all-in-one approach in multiple security vectors that should not be lost focus
- integration
- protection
- security
- DNS cost
- Integration simple
February 13, 2024
SImple and effective product!
F5 Distributed Cloud WAF (Web Application Firewall) is used to protect our public and private web applications. We were using BIGIP previously, and patching the appliance was cumbersome, having to do it a couple times per year. BIGIP also did not provide much application observability for devs and admin staff. XC, being a WAF-aaS, solves these issues and provides dashboards for understanding web application traffic
- Global Service Policies to push to all web applications
- Up to date attack signature detection
- dashboard to show why requests are being blocked and to help troubleshoot issues
February 13, 2024
F5 Distributed Cloud WAF reduced the complexity of securing our internal and cloud hosted applications
F5 Distributed Cloud WAF helped us from managing a legacy web application firewall that was on premises. It greatly expediated our ability to manage and configure our firewalls. We have a small team and it has made us more efficient. The scope was protecting a website and securing it. The F5 purchase was a great decision.
- Ease of Use
- Security
- Role Based Access
- Scalability
- Modernize GUI
- Dark Mode
- Permissions by User
February 13, 2024
F5 BEST WAF FOR COMMERCE!!
I use to protect my web applications in the company where my users access daily where can you to receive attacks from hackers from any country.
A large number of attacks related to malicious code have been reviewed on the platform on a daily basis that the tool successfully blocked.
- Protection against sql injection at level code
- Protection against file inclusion al directory level
- Protection against Cross Site Encryption
- Protection against vulnerabilities
- Allow custom Dashboard for diferent suser roles
- Interface more intuitive for beginner users
- Reports more details or granulars
February 13, 2024
5 Distributed Cloud WAF (Web Application Firewall) Review
- Securing the apps
- Api Service calls through nginx
- We use F5 for request to got Database as well
- they has to be easy to deploy
- UI should be faster to load
- IRules to be made easy to understand
February 13, 2024
F5 Distributed Cloud WAF FTW!!
With applications shifting from on prem solutions to multi-cloud and on prem hybrid models, F5 Distributed Cloud WAF allows us to manage the security of applications in a singular view. This allows cloud teams to own their environments and run them on a way that they understand, but the security of the application can be delivered in a consistent fashion even as the application moves from on prem to the cloud and between clouds.
- Simple deployment model
- Single pane of glass
- Policy import from legacy AWAF would be amazing.
February 13, 2024
Make the cloud seamless with F5 Distributed Cloud WAF
We use F5 Distributed Cloud WAF (Web Application Firewall) in healthcare to merge all of our cloud environments, we had problems in the past with combining each of the cloud environments and we plan to keep expanding as the healthcare industry is growing more rapidly than ever.
- Showing statistics in one dashboard
- Make the cloud seamless
- Merge all of the environments together
- It is hard to implement into larger environments that were always traditionally on premise
February 13, 2024
F5 Distributed Cloud WAF attacks false positive rates
we currently are using F5 Distributed Cloud WAF (Web Application Firewall) but distributed cloud is a worthwhile endeavor for a lot of organizations.
- Attack false positive rates
- signature updates for zero day speed
- scaling for apps with millions of users
- custom signatures
- ability to write iRules as responses to event triggers
- ability to retrieve threat information from third party appliations for intelligence
February 13, 2024
F5 Distributed Cloud WAF lives up to the hype!
F5 Distributed Cloud WAF (Web Application Firewall) is able to detect Bots and prevent DDoS attacks and other attacks launched against websites.
- Easy to implement.
- Bot detection.
- DDoS Prevention
February 13, 2024
F5 Distributed Cloud WAF has added much needed security to an essential public facing site.
Installed the F5 Distributed Cloud WAF (Web Application Firewall) with Bot and DDoS Defense and Management…couldn’t be kore satisfied with the product and service! I highly recommend!
- Easy to Install
- Easy yo understand dashboard
- Bot Detection
- DDoS prevention
February 13, 2024
Happy security team thanks to F5 Distributed Cloud WAF
We use F5 Distributed Cloud WAF (Web Application Firewall) for security purposes.
- DDOS
- Credential Stuffing
- LOGGING for events.
- Confusing at first
- Expensive
- Complicated
February 13, 2024
Federal deployment for CRA
I use F5 Distributed Cloud WAF (Web Application Firewall) acorss our federal deployment for CRA
- deployment ability across existing F5 integration
- management
- Operational Dashboarding
- Better overall dashboards
- Greater AI Capabilities
February 13, 2024
Mitigate web attacks and vulnerabilities with comprehensive security controls thanks to F5 Distributed Cloud WAF
I use F5 Distributed Cloud WAF (Web Application Firewall) when trying to prevent Web application attacks and reduce the attack surface, security incidents and data breaches. Protecting our endpoints from exposure. Mitigate web attacks and vulnerabilities with comprehensive security controls.
- Prevents web attacks
- Policy
- SaaS WAF
- ease of management
- quicker software updates
February 13, 2024
Moving on-prem app to the cloud without losing security policy management and visibility
I moved web apps to a cloud-based F5 Distributed Cloud WAF (Web Application Firewall) versus virtual appliances that were difficult to manage.
- Centralized management
- Cloud agnostic
February 13, 2024
We use the F5 Distributed Cloud WAF (Web Application Firewall) to protect our public API from attacks
We use the F5 Distributed Cloud WAF (Web Application Firewall) to protect our public API from attacks
- Block attacks
- Moniyor traffic
- Protect private API
- More documentation
- Training labs
February 13, 2024
F5 Distributed Cloud WAF (Web Application Firewall) for simplifying management and monitoring
I use F5 Distributed Cloud WAF (Web Application Firewall) for simplifying management and monitoring. Also the ease of migrating apps.
- Ease of migrating.
- Monitoring made simple.
- Production input increase.
- Easier authentication.