AWS WAF, a really good alternative
February 10, 2020

AWS WAF, a really good alternative

Oscar Martinez | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User
Review Source

Overall Satisfaction with AWS WAF

We use AWS WAF in our whole organization to help us protect all workloads we deploy using AWS CloudFront and AWS API Gateway. The mail problems we cover are layer seven attacks, but we also create whitelists and blacklists to allow or deny specific traffic. We also use Managed Rules for AWS WAF, to quickly get started and protect our web application or APIs against common threats.
  • Great integration with AWS services.
  • Easy configuration management via API.
  • Reporting.
  • Log visualization.
  • Pricing can be less than other WAF solutions.
  • Configuration is easy so it's not time consuming.
The integration with AWS services is pretty straight forward and provides a lot of functionalities other products don't. AWS Managed Rules can be used for easy setup with high protection options or Custom Rules can be created to costomize WAF to fit our needs.
If you're intending to use AWS WAF, I would say that you absolutely should sign up for support. AWS Support is excellent and they can help you in a really good way to solve your issues.

Do you think AWS WAF delivers good value for the price?

Yes

Are you happy with AWS WAF's feature set?

Yes

Did AWS WAF live up to sales and marketing promises?

Yes

Did implementation of AWS WAF go as expected?

Yes

Would you buy AWS WAF again?

Yes

AWS WAF is well suited for securing HTTP/HTTPS and API services deployed in AWS as it is easily integrated with services like CloudFront and API Gateway. AWS WAF can be used to to address some application security flaws such as the ones named by the Open Web Application Security Project (OWASP).