AWS WAF Reviews

We are a technical services company and this is one of the solutions that we have helped implement for our clients. We stopped using AWS about six months ago and as such, we are not currently using the AWS Web Application Firewall.

The most valuable feature is the scalability because it automatically scales up or scales down as per our requirements.

I would like to be able to view a graphical deployment map in the user interface that will give me an overview of the configuration and help to determine whether I have missed any steps.

The stability is good. From our experience, I've felt very happy with all of the AWS components in terms of stability. They work fine and have met our requirements.

The scalability of this solution is very good.

I am really happy with the AWS customer support, although I have not needed to contact them for this solution.

We have changed solutions because the choice of product depends on the customer's preferences and requirements. When I am working on a contract, I am required to use whatever they ask me to. If I already have the experience then I apply it. Otherwise, I learn what I need to, which sometimes involves taking training courses.

My advice for anybody who is implementing this solution is not to simply look it up on Google before starting to use it. I would suggest taking some training courses, start to understand how it works internally, and then begin using it.

Overall, it is a good product and it generally fits well for my purposes.

I would rate this solution a seven out of ten.

My whole business is cloud cost management. What I do is help people manage expenses. That encompasses everything from cleaning up software as a service subscriptions to optimizing AWS. My use cases for AWS WAF have to do with cloud research only.  

The best part about it is that it is a cloud solution.  

The complexity of deploying turnkey solutions could be simplified.  

They actually have too many different things that you can tinker with and too many different ways to do the same thing. It may be helpful if the product were to be more directed and if it used best practices with technical and non-technical users in mind.  

We have been using WAF (Web Application Firewall) for six months.  

WAF is very stable.  

I believe WAF is very scalable.  

We have only two staff in our organization who are using AWS WAF.  

Technical support is more-or-less fair. That is where most technical support falls these days.  

The initial setup is really sorta complex. That is something which could probably be made easier.  

The licensing costs are variable. For me, it is under a hundred dollars a month.  

The range of your costs with Amazon Web Services is going to be different depending on a lot of factors. It can go as low as actually being free all the way up to millions of dollars. It depends on the organization and how the service is used.  

On a scale of one to ten where one is the worst and ten is the best, I would rate this product as a seven-out-of-ten. A change in the pricing structure that favors the client and simplification is something they would have to do to improve to make that score closer to a ten.  

Our primary use case is to protect our internal web solution. We use it to have an internal application for our customers. We are an SME worldwide company, so we have some internal website solutions architects that use this as an internal portal to the internet. We apply a WAF front to our web application.

The most valuable aspect is that it protects our code. It's a bit difficult to overwrite code in our application. It also protects against threats. It's important to protect the code against the threats on the internet. It redirects any threat, any attack, to a Fail2ban mechanism.

Sometimes it's a bit difficult to check the rules because when you apply a rule, sometimes it's too much and we need to rewrite the rules and make compromises on the rules because it will block too many things. It's a bit difficult to apply the right rules for the right security.

We have used AWS WAF for around a year. 

Their support is very good. We have an enterprise agreement with Amazon.

I don't remember there being any problems with the setup.

I think AWS WAF is a great solution. You can define big and a bit smaller architectures and scale out architecture as you need, due to the edge location. Its features are very amazing. 

I would definitely recommend AWS WAF. I asked my security director to move from our internal WAF to the AWS WAF because we can make global unique WAF services for our on-premise web servers and also our AWS web servers with one common rule and one common authority to manage these rules

I would rate AWS WAF an eight out of ten.

We use AWS WAF to prevent cyberattacks, such as SQL Injection attacks and cross-site scripting attacks. The end users' traffic has more threats and the web application gives good support.

The most valuable features of AWS WAF are its cloud-native and on-demand.

Any customer can leverage AWS WAF immediately, it has a basic set of rules that are available.

The solution could improve by having better rules, they are very basic at the moment. There are more attacks coming and we have to use third-party solutions, such as FIA. The features are not sufficient to prevent all the attacks, such as DDoS. Overall the solution should be more secure.

I have been using AWS WAF for approximately four years.

This is a very stable solution.

AWS WAF is scalable.

We have approximately five customers using this solution.

The technical support is very good. They are responsive and knowledgeable, they have always come back with a resolution or a workaround to help us.

The initial setup took approximately 15 mins, it is easy.

We have a team that does the support for the solution.

AWS WAF is pay-as-you-go, I only pay for what I'm using. There is no subscription or any payment upfront, I can terminate use at any time. Which is an advantage.

The first version of AWS WAF was not mature but the second version is very mature.

I would recommend this solution to others because instead of choosing a third-party solution which will take time, and you will have to be in negotiations. It is good to start with AWS WAF for their minimal primary security firewall to save their workload. AWS WAF is available on-demand from day one.

I rate AWS WAF a seven out of ten.

Application security is our primary use case.

The customized billing is the most valuable feature.

In a future release of this solution, I would like to see additional management features to make things simpler.

It's pretty good, as long as the pricing matches your budget.

I would rate AWS WAF at eight out of ten. It does everything pretty well. I would just like additional management tools.

We use this product for our web application firewall. It is used for production services.

I am not a direct customer but I have installed it for one of my clients.

The most valuable feature is that it is integrated with other AWS services.

I would like to see it more tightly integrated with other AWS services.

I have been working intermittently with AWS WAF over the past two years.

AWS WAF is extremely scalable.

At this point, we don't have any plans to increase our usage of it.

Prior to AWS WAF, I was using a Cisco web application firewall. However, when I started using AWS, I switched.

This is not a product that you need to install. You just use it.

The only people that need to work with it are those who configure it.

You need an additional AWS subscription for this product if you are buying a managed tool.

Overall, this is a good product and I recommend it. My advice for anybody who is just getting started with it is to follow the instructions.

I would rate this solution an eight out of ten.

The primary use case is application security.

We are using the latest version.

It is a one-click WAF with no effort needed.

Protection and WAF.

We need more support as we go global.

The UI could use improvement.

It is stable.

It is Amazon. Everything is scalable. It is beyond what we need.

We hardly received technical support on this product.

It was super easy to set up. We did it with one click.

We chose this solution because it is cloud native Amazon.

We have an above average security posture.

We are using AWS WAF for business purposes for clients. We host our client's platforms on AWS WAF.

AWS WAF has a lot of integrated features and services. For example, there are security services that can be integrated very well for our customers.

The serverless product from AWS WAF could be improved. For example, they have only one serverless series, Lambda, but they should extend and improve it. Additionally, the firewall rules are not very easy to configure.

I have used AWS WAF for approximately five years.

I have found AWS WAF to be stable.

The scalability of AWS WAF is very good.

The solution can be used in small to large-sized businesses.

The customer service has been fine, we had no issues with them. We have been satisfied.

The setup of AWS WAF is very easy.

The price of AWS WAF is reasonable, it is not expensive and it is not cheap.

I would recommend this solution to others.

I rate AWS WAF a seven out of ten.