We performed a comparison between Cloudflare and Sucuri based on real PeerSpot user reviews.
Find out in this report how the two Distributed Denial of Service (DDOS) Protection solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable feature of Cloudflare is the GUI. You are able to control the solution very well through the interface. There is a lot of functionality that is embedded in the service."
"We're using dynamic components to build flexible pages to create and manage Git merge requests for code and reviews."
"The technical support is good."
"Centralized, full-featured DNS."
"The UI is good."
"New and innovative way to protect the client's data."
"Cloudflare is a security SaaS provider that provides security and protects us from any application layer attack."
"It is easier to configure and develop documentation to see how we have configured firewalls."
"The most valuable part is the analytics and visualization."
"It significantly eases the workload and streamlines the initial setup required to protect a website."
"I use it as a WAF, which is basically a web firewall to monitor and block traffic to our web server."
"The initial setup was very easy."
"The initial setup was straightforward. Straight forward because the plugin can simply be installed and then it does its job. It's not complex, there is no learning curve. The online scan is simple, you put in the website address and the scan gives us a report on the browser itself. It's simple to use."
"Domain name scanning since it allows us to scan all our domain names and determine whether it has malware or if is reported as phishing."
"It should be easier to collect the logs with companies like Sumo. However, based on my discussions with the salespeople, I understand that's how they make their money. With the enterprise product, they want people doing those kinds of enterprise features to do the logging. They want them to pay a lot of money, and that's where I have an issue with them. That should be a default. You should be able to get the log no matter what. The logging should be universal."
"Cloudflare's console should be made more user-friendly."
"One area of improvement is in the Access Rules. Hypothetically, if we wanted to block or challenge traffic outside of the United States, the only way to currently do that (as far as I know) is to enter every single country outside of the United States. That could be a labor intensive job. A solution could be to enable users to create a rule where traffic is only allowed within a certain country."
"It would be beneficial for us if Cloudflare could offer a scrubbing solution. This would involve taking a snapshot of my website and keeping it live during a DDoS attack, ensuring uninterrupted service for our users. DDoS attacks are typically short in duration, and having Cloudflare maintain the site's availability from its secure network would enhance the overall user experience. I would appreciate it if Cloudflare could consider implementing this feature. Many organizations already utilize similar capabilities in their CDN platforms, where a static snapshot of the web page is displayed during DDoS attacks. In terms of features, Cloudflare needs to enhance its resilience and stay more focused on adopting new technologies. For instance, solutions like F5 XC Box, Access Solution, and Distributed Cloud Solution have impressive features, and Cloudflare should strive to match and exceed those capabilities. There's a need for improvement in areas like AI-based DDoS attacks and Layer 7 WAF features. Cloudflare should prioritize enhancements in areas such as behavioral DDoS and protection against SQL injection attacks, considering the prevalent trend of public exposure to the internet for business reasons. Overall, Cloudflare needs to invest more in advancing its feature set."
"It should confirm audit findings of the assigned area with auditees to ensure that the audit conclusions are based on an accurate understanding of the issues."
"There are some issues with the CDN services."
"It should have easier documentation for the configuration. It's very technical and people who aren't technical should also be able to do the configuration."
"Latencies are always a problem."
"In terms of improvement, the cost factor is always there."
"The main improvement I would like to see is support for .NET applications. If they could include this feature, I would include more sites in the protection."
"It would greatly benefit customers if they implemented an online chat or messaging system for quicker assistance."
"I would rate this solution an eight out of ten. The reason is that we have found sometimes customers or Google saying that there is something wrong with the website but Sucuri says that the site is clean so we do have to look at the site manually which means that the Sucuri scan does not pick up anything and everything."
"Sucuri could provide help for specific security alerts in-line instead of requiring users to search for it in the help section."
"Confident score: Currently it does not have one and there are cases that most websites flagged are false-positives."
Cloudflare is ranked 1st in Distributed Denial of Service (DDOS) Protection with 57 reviews while Sucuri is ranked 19th in Distributed Denial of Service (DDOS) Protection with 6 reviews. Cloudflare is rated 8.4, while Sucuri is rated 8.4. The top reviewer of Cloudflare writes "It's easy to set up because you point the DNS to it, and it's working in under 15 minutes". On the other hand, the top reviewer of Sucuri writes "Simple solution and good WAF". Cloudflare is most compared with Akamai, Azure Front Door, Imperva DDoS, AWS Shield and Microsoft Azure Application Gateway, whereas Sucuri is most compared with AWS WAF, SiteLock, Comodo cWatch, StackPath WAF and Prisma Cloud by Palo Alto Networks. See our Cloudflare vs. Sucuri report.
See our list of best Distributed Denial of Service (DDOS) Protection vendors.
We monitor all Distributed Denial of Service (DDOS) Protection reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.