Easiest implantation of Firewall out there
Updated September 12, 2022

Easiest implantation of Firewall out there

Zeel Pandya | TrustRadius Reviewer
Score 9 out of 10
Vetted Review
Verified User

Overall Satisfaction with AWS WAF

We have several web applications running on AWS build on Laravel so we inherently have a need to secure it. DDOS attacks are common among them. as we mounted an AWS WAF before our load-Balancer. since then we have never faced any issue regarding web application security. Highly recommend it if you run critical e-commerce applications.
  • DDOs attack prevention
  • Cost saving if you have multiple web applications.
  • One stop solution so no further efforts needed. almost everything can be handle with AWS WAF.
  • AWS WAF is a bit costly if used for single applications.
  • they should provide attack-wise protection, like if my certain type of application is vulnerable to DDOS then I should be able to buy WAF, especially for that attack.
  • CLI tool to test in offline mode if possible.
  • DDOS protection
  • Ability to mount in front of Load balancer
  • AWS Managed service means hassle free installation
  • Somewhat costly if specific needs are not there.
  • If security is concerned than comparatively is beneficial.
  • All those price that spent on AWS WAF in return gets saved in man hours.
Comparatively, AWS WAF is far more prevalent in modern age web application as most of the High-Traffic E-commerce sites are moved on AWS. Due to this most developers are familiar with WAF, in addition its pretty easy comparatively as well. So other solutions may only come into the picture where some particular scenarios arise.

Do you think AWS WAF delivers good value for the price?


Are you happy with AWS WAF's feature set?


Did AWS WAF live up to sales and marketing promises?

I wasn't involved with the selection/purchase process

Did implementation of AWS WAF go as expected?


Would you buy AWS WAF again?


If your firm primarily focuses on web development, this should be a go-to solution. On top of that, if you're primarily working in the E-commerce sector, where frequent monetary transactions occur, you'll find your self needing that extra security because of increased risk of cyber attacks. Other than that, it should only be considered if client has good budget and is asking for extra security.