Skip to main content
TrustRadius
F5 Distributed Cloud WAF (Web Application Firewall)

F5 Distributed Cloud WAF (Web Application Firewall)

Overview

What is F5 Distributed Cloud WAF (Web Application Firewall)?

F5 Distributed Cloud WAF leverages F5's Advanced WAF technology, delivering WAF-as-a-Service and combining signature- and behavior-based protection for web applications. It acts as an intermediate proxy to inspect application requests and responses to block and mitigate a broad spectrum of…

Read more
Recent Reviews

F5 Cloud WAF Review

9 out of 10
May 20, 2024
Incentivized
Well, essentially we're trying to manage URLs that come into our environment and use the WAF to assess them to essentially to inspect …
Continue reading

Excellent product

10 out of 10
May 10, 2024
Incentivized
F5 Distributed Cloud WAF (Web Application Firewall) has been a dependable and easy to deploy tool that has been keeping our web …
Continue reading

Review

9 out of 10
May 08, 2024
Incentivized
We use F5 to support legacy systems that otherwise do not have adequate security. I work in Higher Education which often lends itself to …
Continue reading

Amazing F5

7 out of 10
April 29, 2024
Incentivized
We use F5 WAF to secure the services we host over the internet. Sometime we do have issues with SSL encryption.
Continue reading

F5 review

10 out of 10
April 29, 2024
Incentivized
we used WAF as a measure product to secure our web application inside our organisation.It is a very helpful product to isolate and secure …
Continue reading
Read all reviews

Awards

Products that are considered exceptional by their customers based on a variety of criteria win TrustRadius awards. Learn more about the types of TrustRadius awards to make the best purchase decision. More about TrustRadius Awards

Reviewer Pros & Cons

View all pros & cons

Video Reviews

1 video

View Playlist
Director of Engineering Solutions with Nexum Securities Dishes Truth | F5 BIG-IP WAF
02:56
Return to navigation

Product Demos

Distributed Cloud Services Demo

www.f5.com
Return to navigation

Product Details

What is F5 Distributed Cloud WAF (Web Application Firewall)?

F5 Distributed Cloud WAF leverages F5's Advanced WAF technology, delivering WAF-as-a-Service and combining signature- and behavior-based protection for web applications. It acts as an intermediate proxy to inspect application requests and responses to block and mitigate a broad spectrum of risks stemming from the OW ASP Top 10, persistent and coordinated threat campaigns, bots, and layer 7 DoS.


F5 Distributed Cloud WAF requires no hardware or software to implement or maintain, set up, deploy, manage and scale. It provides hybrid deployment options to secure applications wherever they are deployed, including entirely as SaaS via F5's network points-of-presence (PoPs) or locally across public clouds, customer data centers and at the customer edge. This is accomplished leveraging F5's global network and centralized console for critical app security policy enforcement whenever it's required.

Benefits

F5 Distributed Cloud WAF is designed to ease the burden and complexity of consistently securing distributed web apps by delivering:

  • Simplified operations: SaaS-delivered WAF that’s set up, deployed, managed and scale across clouds, on-premises data centers, and edge sites.
  • DevOps agility + SecOps control: Delivers the programmability that DevOps needs combined with the efficacy and oversight that SecOps mandates, enabling faster application delivery and release cycles.
  • Reduced time to resolution: Improves visibility and insight across WAF and DDoS security events, and into app performance, including intuitive drill-down capabilities.
  • Comprehensive protection with fewer false positives: Utilizes both signature-based and AI/ML based detection techniques with automatic signature tuning to ensure maximum efficacy and reduced SecOps workloads.


F5 Distributed Cloud WAF (Web Application Firewall) Features

  • Supported: Attack signature engine: Captures Common Vulnerabilities and Exposures (CVEs) plus known vulnerabilities and techniques identified by F5 Labs, including Layer 7 DDoS, threat campaigns, bots, and automated threats.
  • Supported: Advanced behavior engine: Leverages AI/ML to monitor and score client interactions, deciphering intent based on the number of WAF rules hit, forbidden access attempts, login failures, and error rates, to help identify an app’s highest priority threats.
  • Supported: Service policy engine: Enables micro segmentation and advanced security at the application layer, utilizing IP reputation and allow/deny lists to block clients with known bad TLS fingerprints, ASNs from suspicious countries.
  • Supported: Automatic attack signature tuning: Determines if a signature-identified attack is really a threat, helping reduce the number of false positives.
  • Supported: Streamlined set-up and management: Deploy through a simple UI or automate via APIs including best- practice default protections and the flexibility to create custom rules.
  • Supported: Multi-app dashboards: Observability via a single dashboard with a 360-degree view of app performance and security events across distributed applications.

F5 Distributed Cloud WAF (Web Application Firewall) Videos

F5 Distributed Cloud WAF Demo
F5 Distributed Cloud API Security
F5 Distributed Cloud Bot Defense
F5 Distributed Cloud DDoS Mitigation

F5 Distributed Cloud WAF (Web Application Firewall) Integrations

F5 Distributed Cloud WAF (Web Application Firewall) Competitors

F5 Distributed Cloud WAF (Web Application Firewall) Technical Details

Deployment TypesSoftware as a Service (SaaS), Cloud, or Web-Based
Operating SystemsUnspecified
Mobile ApplicationNo

F5 Distributed Cloud WAF (Web Application Firewall) Downloadables

Frequently Asked Questions

F5 Distributed Cloud WAF leverages F5's Advanced WAF technology, delivering WAF-as-a-Service and combining signature- and behavior-based protection for web applications. It acts as an intermediate proxy to inspect application requests and responses to block and mitigate a broad spectrum of risks stemming from the OW ASP Top 10, persistent and coordinated threat campaigns, bots, and layer 7 DoS.

Cloudflare, Fastly Edge Cloud Platform, and Imperva Application Firewall are common alternatives for F5 Distributed Cloud WAF (Web Application Firewall).

The most common users of F5 Distributed Cloud WAF (Web Application Firewall) are from Enterprises (1,001+ employees).
Return to navigation

Comparisons

View all alternatives
Return to navigation

Reviews and Ratings

(121)

Reviews

(1-25 of 64)
Companies can't remove reviews or game the system. Here's why
May 20, 2024

F5 Cloud WAF Review

Verified User
Professional in Information Technology
Insurance Company, 10,001+ employees
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
Well, essentially we're trying to manage URLs that come into our environment and use the WAF to assess them to essentially to inspect them and then basically make decisions about whether to forward them. Obviously we keep a copy of it or whether they get blocked under certain policy scenarios.
Pros and Cons
  • It certainly does a good job once we specify and we have it both in line and offline or sideline, but once we define the URL list and continually update that, it does a very good job of capturing and potentially blocking those filter URL.
  • I would say over time we want to see improvement in its ability to inspect payloads for certain types of data that they cannot do today.
Likelihood to Recommend
Well it certainly is where we use it in the perimeter at the edge, so all inbound traffic essentially goes through the WAF and so we inspect and again, pass or block based on what's coming through.
May 10, 2024

Excellent product

Verified User
Analyst in Information Technology
Computer & Network Security Company, 5001-10,000 employees
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
F5 Distributed Cloud WAF (Web Application Firewall) has been a dependable and easy to deploy tool that has been keeping our web applications secure. It has advanced features that protects our web applications from known and unknown threats. It is one of the best wad among it’s competitors
Pros and Cons
  • This web application protection software has a dependable customer support team. Moreover, it is easy to understand the features of F5 Distributed Cloud WAF (Web Application Firewall).
  • It’s easy to integrate
  • Easy to understand , has dynamic fritters with emerging security trends
  • Dashboard can be improved
Likelihood to Recommend
It is best
May 10, 2024

Becomes easier with F5 Distributed Cloud WAF

RK
Rajeev Kumar
Director
Indiabulls Housing Finance Limited (Financial Services, 1001-5000 employees)
Score 10 out of 10
Vetted Review
ResellerIncentivized
Use Cases and Deployment Scope
Got to have multiple tenants wherein F5 Distributed Cloud WAF has really helped to manage it well. Customers having multiple cloud instances should use F5 Distributed Cloud WAF in their organisation. This helps you to solve multiple applications from at multiple clouds. In current scenario, customer are facing to managing cloud hosted applications which can really be managed to run smoothly by using F5 Distributed Cloud WAF in your organisation.
Pros and Cons
  • Multi Cloud
  • Multi Application
  • Initial Control
  • East to Manage
  • Prices
  • Technical integrations
  • Mitigation
Likelihood to Recommend
Customer who has multi cloud environment is the best fit for such solutions. Costing has been one major factors to go ahead and increase the probability to win with F5 Distributed Cloud WAF. Most of the customer today needs hybrid kind of scenario wherein F5 Distributed Cloud WAF goes and fits very well. F5 Distributed Cloud WAF has been an enterprise product and help partners really to stick with it.
May 10, 2024

F5 Distributed Cloud WAF - It will save you time and facilitate your life.

Verified User
Engineer in Professional Services
Telecommunications Company, 10,001+ employees
Score 10 out of 10
Vetted Review
ResellerIncentivized
Use Cases and Deployment Scope
I use the F5 Distributed Cloud WAF to protect many business applications for my customers. In the past, we used to have a on-premises WAF solution that was difficult to configure and manage. Because we have a dynamic environment with more applications coming about every quarter, is important to have easy of configuration and consistent policies deployment throughout our organization.
Pros and Cons
  • Easy of configuration
  • Great support
  • Threat detection
  • Lower Latency
  • Improved UI (modern look)
  • Better SLAs
Likelihood to Recommend
To protect web applications in an easy manner, with no complexity of configuration and no need for specif granularity, F5 Distributed Cloud WAF is our guy. When comparing to other cloud options or on-prem, pricing is also very attractive (it beat Imperva and Cloudflare) and the protection it offers is impressive. We don't feel insecure.
May 09, 2024

F5 Distributed Cloud WAF review

Ray Shieh, MBA | TrustRadius Reviewer
Ray Shieh, MBA
Product Manager
Proofpoint (Wine and Spirits, 501-1000 employees)
Score 5 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
Trying to understand the risks that enter my website was extremely simple after using F5 Distributed Cloud WAF. The dashboard was very easy to understand and the user-friendly platform made communicating to management easy. By understanding F5 Distributed Cloud WAF and risks to the organization, I could prioritize next steps withing my organization. It did take some time to onboard the solution, as it was not intuitive to deploy, but the F5 team were very quick to support my IT Team's needs.
Pros and Cons
  • UI dashboard to understand risks and traffic
  • Integrations with other platform solutions
  • Identify risks
  • Implementation
  • Integrations with Microsoft
  • Ticketing system for support
Likelihood to Recommend
I have already answered this question in a lot of detail.
May 08, 2024

F5 Distributed Cloud WAF review

Verified User
Manager in Engineering
Computer & Network Security Company, 11-50 employees
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
We use WAF for protect web portals with some customers. Right now we feel that the protection needs to be more clear and to be more extensive.
Pros and Cons
  • Speed
  • liability
  • information
  • logging
  • reporting
  • dashboards
Likelihood to Recommend
well could be the liability
and less could be logging
May 08, 2024

With F5 WAF, your life is better

Verified User
Analyst in Information Technology
Pharmaceuticals Company, 10,001+ employees
Score 8 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
I've been using F5 Dist WAF for my current job. This is a great tool for monitor and protect our internal webs to external as well internal network. I'm confident to say that with F5 WAF, my job is now much easier and and always reply on it for my job.
Pros and Cons
  • Protection
  • Security
  • Prevention
  • UI
Likelihood to Recommend
I don't really have any specific scenarios about F5. I have a great experience and don't have a problem.
May 08, 2024

Review

Verified User
Engineer in Information Technology
Higher Education Company, 5001-10,000 employees
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
We use F5 to support legacy systems that otherwise do not have adequate security. I work in Higher Education which often lends itself to aged systems that cannot by upgraded or replaced.
Pros and Cons
  • hiding infrastructure from attackers
  • load balancing
  • allowing legacy systems to remain viable
  • none at this time
Likelihood to Recommend
If you are running an application or service that would be vulnerable if deployed directly to the web.
May 08, 2024

Best WAF company in the market today!!

Verified User
Director in Information Technology
Real Estate Company, 51-200 employees
Score 9 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
F5 is a great product and I would recommend them to my collegeas for any of their WAF needs. Their WAF solution helped stopped several DDOS attacks before they happened.
Pros and Cons
  • DDOS
  • OWASP definitions
  • ease of use
  • more advanced features
  • easier for admins to use
Likelihood to Recommend
I would recommend it for any WEB applications in Azure
April 29, 2024

F5 review

Verified User
Administrator in Information Technology
Banking Company, 501-1000 employees
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
we used WAF as a measure product to secure our web application inside our organisation.It is a very helpful product to isolate and secure all our application.
Pros and Cons
  • secure web application
  • to prevent from any malware attack
  • to provide the secure environment
  • Reliability
  • Secure
  • User friendly
  • Provide secure application
  • WAF should use more filter to isolate the paticular issue
  • WAF should be detect and filter the malware attack and notify
  • WAF should use more secure option
  • WAF should work proactive and reactive
Likelihood to Recommend
WAF is very useful for web application and to secure the company internal web application.It is highly recommended to use WAF in the highly secure environmentWAF is really very handy product where all the company using now a days very offten. WAF provided secure environment and very reliable product
April 06, 2024

F5 WAF

Zhe Cheng | TrustRadius Reviewer
Zhe Cheng
Associate Director of Technology
CGS International Securities (Financial Services, 5001-10,000 employees)
Score 8 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
Migrate web app attacks and vulnerabilities with comprehensive security controls and uniform policy and observability via SaaS delivered WAF that is quick to set up and deploy, and easy to manage and scale across any environment. And simply app security by seamlessly integrating protections into the development process with core security functionality.
Pros and Cons
  • Easy to use
  • Reduce the time
  • Save the cost
  • Comprehensive protection
  • Flexible and agility
  • None
  • None
Likelihood to Recommend
N.A
March 22, 2024

Try and buy is best choice for your app

Quoc Nguyen | TrustRadius Reviewer
Quoc Nguyen
Sale
Westcon (Computer & Network Security, 11-50 employees)
Score 9 out of 10
Vetted Review
ResellerIncentivized
Use Cases and Deployment Scope
Protect our App in any where, quickly deployment and leverage all features of F5 Distributed Cloud WAF.
Pros and Cons
  • Easy to deployment to protect your app in anywhere
  • F5 Distributed Cloud WAF features is the same Big-IP
  • Don't care performance
  • One console with BIG-IP on premise
  • More Hub (DC) in the world
Likelihood to Recommend
You should use F5 Distributed Cloud WAF when you have app on cloud, app on multi-cloud, need to expand and best WAF to protect your app.
March 22, 2024

Review

Verified User
Account Manager in Sales
Computer & Network Security Company, 11-50 employees
Score 8 out of 10
Vetted Review
ResellerIncentivized
Use Cases and Deployment Scope
Deploying WAF instances in a distributed manner across multiple locations or cloud environments to protect web applications and APls. Configuring security policies to mitigate various types of attacks and vulnerabilities. Protection against cyber threats: It helps in defending against a wide range of cyber threats, including OWASP Top 10 vulnerabilities, DDoS attacks, SQL injection, cross-site scripting (XSS),
Pros
  • Protect against cyber threat
  • API protection
  • Central management
Likelihood to Recommend
Performing up to expectation
March 22, 2024

F5 app worlds

Verified User
Employee in Engineering
Banking Company, 1001-5000 employees
Score 8 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
It help to prevent attack from public internet
Pros and Cons
  • It help prevent api attack
  • It help prevent AI Bot attack
  • It help prevent ddos attack
  • Less analysis info on dashboard
  • Not easy to set up
Likelihood to Recommend
f5 product is very compatible with different cloud platforms
March 22, 2024

Great

AUNG THU HTET | TrustRadius Reviewer
AUNG THU HTET
Pre-Sales Engineer
VSTECS (Computer & Network Security, 11-50 employees)
Score 9 out of 10
Vetted Review
ResellerIncentivized
Use Cases and Deployment Scope
We use XC WAAP and mostly use for the WAF and also API Protection
Pros and Cons
  • it is quick easy using with the WAF template.
  • it is powerful in the bot defense
  • we can monitor realtime about our application vulnerability
  • these can protect our multicloud application and reduce the complex and can do the single pane of glass management.
Likelihood to Recommend
It is easy to use and powerful and protect from our application across multicloud and edge environment and can manage centralize to our application.
February 16, 2024

F5 Distributed Cloud WAF (Web Application Firewall) Review

JH
Jody Hodge
Director of Engineering Solutions
Nexum, Inc. (Computer & Network Security, 51-200 employees)
Score 10 out of 10
Vetted Review
ResellerIncentivized
Use Cases and Deployment Scope
So it's the upgraded version of ASM, which is the actual layer seven protection on applications. So what it does now with the cloud base and the way it's set up, distributed cloud, you have that now. Capabilities in the cloud are what happens. So anytime you need to protect an app or lockdown or do anything with that, that's where it comes into place. For layer seven.
Pros and Cons
  • So if an application is getting attacked, this can protect that application from hackers or DDoS or any of those other areas.
  • Actually right now there's not much because it's handling everything we need to within the layer seven suite. Probably just getting it out there more to the customers is the biggest thing. That's where it needs to be improved. Education.
Likelihood to Recommend
So a lot of companies that have a digital side and they have a lot of applications in the cloud, this is one of those areas that it can protect the net so it can lock 'em down, it'll build a baseline so you understand what that application's doing. So if it sees something not normal, it'll get protected against that.
February 13, 2024

All-in-one approach in multiple security vectors

Verified User
Team Lead in Sales
Information Technology & Services Company, 51-200 employees
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
For all types of publications, both critical and internal, security is the first thing taken into account in our organization. Applying all the security layers that the product offers from DNS, WAF, APM I really consider it to be an all-in-one approach in multiple security vectors that should not be lost focus
Pros and Cons
  • integration
  • protection
  • security
  • DNS cost
  • Integration simple
Likelihood to Recommend
Distributed Cloud WAF (Web Application Firewall) is well suited, for any client that has a hybrid scheme, regardless of its size (from an SME to a large company), the XC solution applies to everyone since the migration to cloud tools It is inevitable, it is not possible to stay with solely on-premise ideologies because that is not where progress is made.
February 13, 2024

SImple and effective product!

Verified User
Analyst in Information Technology
Retail Company, 1001-5000 employees
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
F5 Distributed Cloud WAF (Web Application Firewall) is used to protect our public and private web applications. We were using BIGIP previously, and patching the appliance was cumbersome, having to do it a couple times per year. BIGIP also did not provide much application observability for devs and admin staff. XC, being a WAF-aaS, solves these issues and provides dashboards for understanding web application traffic
Pros
  • Global Service Policies to push to all web applications
  • Up to date attack signature detection
  • dashboard to show why requests are being blocked and to help troubleshoot issues
Likelihood to Recommend
Out-of-the-box F5 Distributed Cloud WAF (Web Application Firewall) offers plenty of protection already, but if you need to make exceptions, it can be easily done using the dashboard and a few clicks. Global service policies can also be applied per company policies to all web applications/ load balancers
February 13, 2024

F5 Distributed Cloud WAF reduced the complexity of securing our internal and cloud hosted applications

Verified User
Employee in Engineering
Government Administration Company, 10,001+ employees
Score 10 out of 10
Vetted Review
Verified User
Incentivized
Use Cases and Deployment Scope
F5 Distributed Cloud WAF helped us from managing a legacy web application firewall that was on premises. It greatly expediated our ability to manage and configure our firewalls. We have a small team and it has made us more efficient. The scope was protecting a website and securing it. The F5 purchase was a great decision.
Pros and Cons
  • Ease of Use
  • Security
  • Role Based Access
  • Scalability
  • Modernize GUI
  • Dark Mode
  • Permissions by User
Likelihood to Recommend
The F5 Distributed Cloud WAF is great for hybrid or cloud accounts but even does well on-premises. For organizations that want the latest and greatest security with an abundance of features that focus on protecting your apps, website and organization. It prevents all types of threats. This is a great product and I would recommend it.
Return to navigation