Excellent product, questionable future, but costly
September 07, 2018
Excellent product, questionable future, but costly
Score 4 out of 10
Vetted Review
Verified User
Overall Satisfaction with Oracle Dyn Web Application Security Platform
We have used Oracle's Dyn WAF since before Oracle acquired Zenedge. As with any WAF, it's used to protect Internet-facing web applications, providing a 24x7 monitored solution. The extensive tools available on their dashboard allow us to closely monitor the activity hitting our web presence and take appropriate action when necessary.
- Pre-populated rulesets - This allows engineers to quickly spin up new WAF instances without the need to configure extensive rulesets.
- Detailed audit logs - Logs show detailed information about traffic hitting the WAF as well as information the rules allowing or blocking the traffic.
- Change Management - Changes can be staged and applied when necessary, without interfering with current traffic.
- Expensive - This service is not cheap. There are several competitors that have similar services and are significantly less expensive.
- Oracle - I think that says it all. Oracle, in my book, does not have a good track record. We'll be moving off of this service in the very near future.
- Tech support slow to respond - Tech support has always been a little slow to respond. They're good at solving problems, and do a great job, but it can take a while to get things rolling.
At the time we chose Zenedge, Dyn WAF was the clear leader. AWS WAF is almost 100% manual with no preset rules. Akamai and CloudFlare both excelled in CDN and Anti-DDoS services, but not in WAF services. Since that time, however, several competitors have appeared as well as offerings from both Akamai and CloudFlare. And each of these services are significantly less expensive.