- Extensive cache control like cache purging and cache rule propagation
- Availability features
- Cross-datacenter solution (active and passive environments)
- CDN and DDoS protection with 24/7 support
Technical Consultant at a tech services company with 10,001+ employees
Provides valuable cache control features like cache purging and cache rule propagation. The dashboard is not accessible on occasion.
What is most valuable?
How has it helped my organization?
Automatic failover between primary and secondary sites enables high availability and accelerates disaster recovery. As soon as it detects that the primary site has gone down, it automatically kick-starts our standby data center.
What needs improvement?
The dashboard is not accessible on occasion. This is probably due to a high load. However, the sites’ protection seems intact.
For how long have I used the solution?
We have been using this solution for four years.
Buyer's Guide
Imperva DDoS
December 2024
Learn what your peers think about Imperva DDoS. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,052 professionals have used our research since 2012.
What do I think about the stability of the solution?
There are no stability issues as of now.
What do I think about the scalability of the solution?
There are no scalability issues, but the custom SSL has a terrible price point that puts it out of range for our clients. If they need custom or EV SSL, they are paying significantly more than their overall hosting.
How are customer service and support?
The technical support is impressive.
Which solution did I use previously and why did I switch?
We used Akamai previously, but due to full PCI DSS compliance, we needed a proprietary solution for two-factor authentication. We then switched to Incapsula.
How was the initial setup?
The setup was so straightforward. It didn’t require to us to make any major changes.
What's my experience with pricing, setup cost, and licensing?
If you don't have custom SSL, get it!
Which other solutions did I evaluate?
We switched to Incapsula from Akamai.
What other advice do I have?
Imperva has a very impressive core feature set. Imperva has made security analysts scratch their heads. We allow them in from the inside so they can actually hit something worthwhile.
We are very confident in the reports we get from Imperva. Its bot identification has allowed us to plan bandwidth appropriately.
Identification for good bots (people who hit our site using automation, but for good business reasons) has allowed us to work with our customers who use our services in new ways.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Manager- Secure Web Defense- Perimeter Security at a financial services firm with 10,001+ employees
A fairly stable solution that can be used for DDoS protection and security
Pros and Cons
- "Imperva DDoS is fairly stable, and its availability is quite high."
- "Imperva DDoS does not provide version control."
What is our primary use case?
We use Imperva DDoS for DDoS protection and security.
What is most valuable?
Imperva DDoS is fairly stable, and its availability is quite high. I haven't faced any downtime or system instability issues with the solution.
What needs improvement?
Imperva DDoS does not provide version control. After I make any changes on any portal, I would want to roll back my changes and go back to a stable version if something goes wrong. That particular feature is not there on the UI portal.
They have this roundabout way wherein I can use different tools to integrate, do the versioning, and manage it on my own. It's not directly available, but I can use it indirectly.
For how long have I used the solution?
I have been using Imperva DDoS for two to three years.
What do I think about the scalability of the solution?
Imperva DDoS is a scalable product.
How was the initial setup?
The solution's initial setup is a bit difficult and not very easy. It's not that time-consuming if you have expertise. Once you get your hands on it, it's pretty straightforward.
What other advice do I have?
Imperva DDoS is deployed on-cloud in our organization.
I would recommend Imperva DDoS to users because it's a fairly stable product.
Overall, I rate Imperva DDoS an eight out of ten.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Buyer's Guide
Imperva DDoS
December 2024
Learn what your peers think about Imperva DDoS. Get advice and tips from experienced pros sharing their opinions. Updated: December 2024.
824,052 professionals have used our research since 2012.
CDN & Cybersecurity Engineer - Web performance & security at CDN Tech / Ecritel
A good solution that allows us to protect websites. It is stable, scalable, quick and easy to use
Pros and Cons
- "Its unique interface for managing security performance and ease of use are the most valuable features of this solution."
- "The weakest point of Imperva is their first level of support, which should be improved. They should also improve the access and security logs viewing directly on the portal. I would like to see better access and security logs through the portal and not only through a SIM solution. Currently, if you want to explore your access and security logs from Imperva, you need a SIM tool or a SIM infrastructure on your side to do it. You can't do it manually or directly through the portal, which is a big problem for us. I had a call yesterday with Imperva for the roadmap, and I just told them this. They agreed that this is an improvement point from their side."
What is our primary use case?
We use it to protect websites against application threats and DDoS attacks. Because it is a cloud solution, we always have the last version. I don't need to update or upgrade.
We are a partner of Imperva. Imperva doesn't sell directly to customers, so they have to pass through vendors and partners like us. All of my customers have different levels of services with Imperva.
How has it helped my organization?
We can protect our customers with Imperva solution very quickly, it's highly appreciated by our customers. We trust the solution because we saw a lot of blocked attacks, so once the customer website is protected, we don't worry about the security of his acces, it's all managed by the solution.
What is most valuable?
-WAF protection works almost out-of-the-box
-Anti-DDoS mitigation in less than 1s, I saw it many time in production, I can say it works
-CDN has high performances, and the Smart Caching mode is really "smart" (you can do some efficient caching even if you're not a specialist)
-It's a unique interface for managing security and performance aspects, we don't need to go through multiples providers to manages these aspects.
What needs improvement?
The weakest point of Imperva is their first level of support, which should be improved.
They should also improve the access and security logs viewing directly on the portal. I would like to see better access and security logs through the portal and not only through a SIEM solution. Currently, if you want to explore your access and security logs from Imperva, you need a SIEM tool or a SIEM infrastructure on your side to do it. You can't do it manually or directly through the portal, which is a big problem for us. They agreed that this is an improvement point from their side.
For how long have I used the solution?
I have been using this solution for four years.
What do I think about the stability of the solution?
It is very stable. I have used this solution for more than 20 customers, and each customer has a lot of websites. I have seen some network outages or things like that over the last four years, but I can say it is very stable.
What do I think about the scalability of the solution?
Scalability is not a problem because it is a cloud. The provider manages this aspect for me.
How are customer service and technical support?
This is the weakest point of Imperva. They have some very good technicians but not at the first level of support. I have already told them this several times. Each time I meet or talk to a chief or director, I say, "Your product is very good, but your support is not at the same level." I provide support to my customers for their solution. So, I know what the customers expect and how to address this kind of expectation. They need some improvement at this level.
How was the initial setup?
The initial setup is very easy and quick. You can put the protection live in less than 10 minutes if you need it.
What's my experience with pricing, setup cost, and licensing?
It is an expensive solution. The price is high as the level of service and security provided is high. A lot of customers tell us that they would love to use Imperva more. I have some customers who have 50 websites, but they protect only 10 websites on Imperva because of the price. They would love to have all their websites running through Imperva, but they can't. They have to choose the more critical websites to protect because the price is very high. It is a very good product, but it is expensive.
If you buy a plan for 20 megabytes and you don't consume all of your 20 megabytes, it is okay, but if you consume more, you are charged for the superior traffic.
What other advice do I have?
I would recommend this solution because I have also used different WAF and DDoS solutions. For me, it is the best solution available. It is quite simple to do the configuration. You can do whatever you want. If you know the product, you can do fine-tuning and have the configuration that you need. You need the knowledge to do this, but you can do this, and it works. Even though it is a high-cost solution, it is easy for me to sell it to customers because I know it will work. I get a little bit stressed about some of the other solutions because I don't trust those solutions like I trust Imperva.
I would rate Imperva Incapsula an nine out of ten. It is quite a good solution. They can do some improvements, but it is quite a good solution.
Which deployment model are you using for this solution?
Private Cloud
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Application Security Architect at a hospitality company with 10,001+ employees
The WAF can identify, block, whitelist or blacklist as needed.
What is most valuable?
Hands down, the WAF is the most valuable feature; being able to identify, block, whitelist or blacklist as needed, are all valuable.
How has it helped my organization?
We now have visibility into our traffic in a scope that we never had before, especially being able to review bot vs human traffic and country of origin.
What needs improvement?
Reporting and the main Sites dashboard could use refinement. We have a lot of sites, and scrolling through the dashboard becomes cumbersome.
For how long have I used the solution?
I have used it for six months.
What was my experience with deployment of the solution?
The only deployment issue we encountered was getting Incapsula and Akamai to play nice. However, the Incapsula engineers were very helpful in helping us configure our sites in the WAF correctly.
What do I think about the stability of the solution?
We have not encountered any stability issues.
What do I think about the scalability of the solution?
We have not encountered any scalability issues.
How are customer service and technical support?
Customer Service:
I have yet to need customer service.
Technical Support:I rate the level of technical support as very high.
Which solution did I use previously and why did I switch?
We had not used a WAF before deploying Incapsula.
How was the initial setup?
The setup was straightforward and simple.
What about the implementation team?
We implemented it ourselves with the guidance of the Incapsula team.
What was our ROI?
It is too soon to tell regarding ROI.
What's my experience with pricing, setup cost, and licensing?
Know your bandwidth requirements.
Which other solutions did I evaluate?
Before choosing this product, we evaluated so, so, so many other options.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
Senior Web Manager at a university with 501-1,000 employees
CloudFlare vs. Incapsula
What is most valuable?
Incapsula:
- Strength of DDoS and WAF
- Simple dashboard
- Analytics
- SSL
CloudFlare:
- Ease of use
- Simple dashboard
- DNS management
- CDN
- SSL
How has it helped my organization?
Incapsula:
It has provided heightened visibility and awareness at management level on the actual threat landscape; it paves the way for easier approval for security-related implementations/projects.
It provides free SSL certs that can be used on website domains that I did not purchase SSL certs for.
Some protection and CDN caching realized, even though I’m on the free tier.
What needs improvement?
Incapsula:
- Allow easier scripting of firewall rules.
- Enable more custom actions to trigger turning on/off Incapsula settings (current actions are quite limited).
- Allow setting up of user groups to manage different groups of sites with viewer/operations/admin levels of privileges. This is quite a typical requirement for enterprise clients who will have multiple teams taking care of different sites, plus an overall IT security team who oversees everything.
CloudFlare:
- Improve the strength of WAF/DDoS.
- Reduce the rate of false positives.
For how long have I used the solution?
I have used Incapsula for about a year.
I have used CloudFlare for almost a year.
What do I think about the stability of the solution?
Incapsula: The dashboard occasionally is not accessible (probably due to high load) but the sites protected seem intact.
CloudFlare: I have not used it enough to provide useful information.
What do I think about the scalability of the solution?
Incapsula: The only issue so far is with the dashboard.
CloudFlare: I have not used it enough to provide useful information.
How are customer service and technical support?
Incapsula: Technical support provides fast response via email tickets, and fairly responsive local technical/account reps.
CloudFlare: I have hardly utilized their technical support so far.
Which solution did I use previously and why did I switch?
I did not previously use a different solution.
How was the initial setup?
For both Incapsula and CloudFlare, initial setup was very easy.
What's my experience with pricing, setup cost, and licensing?
Incapsula:
Pricing is described on their website, but for enterprise agreements, clarify with local reps, as there might be a need for customized needs/pricing. Be clear on how they handle domains and subdomains.
CloudFlare:
Pricing and licensing is very clearly described on their website; 1 site = 1 domain. Clarify how to support subdomains.
Which other solutions did I evaluate?
We evaluated Incapsula and CloudFlare.
What other advice do I have?
Incapsula:
You need to understand how DNS works (e.g., A records vs CNAME, TXTs etc.), how SSL works and how to set it up, and how web servers work with domains and proxy servers. It is not for the layman, as the dashboard assumes some level of understanding in these topics. Some settings can break your site, so do perform some tests on a development site before turning features on/off in the dashboard. The good thing is that most settings are reversible and take effect quite quickly, so if things do go wrong, it will not stay broken for too long.
Also, use extra caution when dealing with TLDs, as the product does not handle your DNS, so for onboarding of domains using A records, you may need to ask Incapsula support for advice and assistance as it requires assigning the A record to a CNAME or IP address (network folks might understand the problem here).
CloudFlare:
You need to understand how DNS works (e.g., A records vs CNAME, TXTs etc.), how SSL works and how to set it up, and how web servers work with domains and proxy servers. It is not for the layman, as the dashboard assumes some level of understanding in these topics. Some settings can break your site, so do perform some tests on a development site before turning features on/off in the dashboard. The good thing is that most settings are reversible and take effect quite quickly, so if things do go wrong, it will not stay broken for too long.
Disclosure: I am a real user, and this review is based on my own experience and opinions.
President/General Manager with 51-200 employees
It solves the issue of not being able to install an on-premise WAF solution or other security device.
What is most valuable?
- Web security
- Protection against DDoS
- Easy to use administration portal
- Reports
- It’s simple to configure
- Very effective
- Easy solution to administer for protecting websites of all sizes
How has it helped my organization?
Any website that we publish on the web needs to be fully protected. In hosting environments, installing an on-premise WAF solution or other security device is not feasible. Incapsula provides a very simple to install and configure solution, that can be up and running in minutes. Also, now, we don’t have to worry about the security of the website, or if the bandwidth needs to be increased, as everything is automatic.
What needs improvement?
It would be nice to have a mobile app as a dashboard interface instead of the web administration, but the service is really great. The product is the best at what it does.
For how long have I used the solution?
I've used it for three years.
What was my experience with deployment of the solution?
Once the DNS configuration is done, everything works flawlessly.
What do I think about the stability of the solution?
No issues encountered.
What do I think about the scalability of the solution?
No - in a large scale attack, the protection scaled without problem.
How are customer service and technical support?
Customer Service:
Service is good and prompt, 9/10.
Technical Support:I haven’t had much need for tech support.
Which solution did I use previously and why did I switch?
We previously used Cloudflare. Although a very good solution, it forces users to completely give up the DNS management of their domain, which most enterprises don’t want to do. Incapsula only needs a redirection of the actual web entry.
How was the initial setup?
Very straightforward. The default settings work very well and are running within minutes. Configuration of advanced features is simple and fast.
What about the implementation team?
Through our own in-house team.
What was our ROI?
It’s difficult to measure, but without Incapsula, we would be forced to host the website on-premises, with very high costs. ROI is probably within six months.
What's my experience with pricing, setup cost, and licensing?
Setup cost was zero. Annual cost is $7,200.
Which other solutions did I evaluate?
We evaluated Cloudflare as well.
What other advice do I have?
This is very simple to install. Websites that use SSL should pre-export their certificates and be ready to import them into Incapsula.
Disclosure: PeerSpot contacted the reviewer to collect the review and to validate authenticity. The reviewer was referred by the vendor, but the review is not subject to editing or approval by the vendor. The reviewer's company has a business relationship with this vendor other than being a customer: We are a Partner of Imperva, who recently acquired Incapsula, although Incapsula is handled completely independently, and we have no relationship to it.
IT Senior Manager at a outsourcing company with 10,001+ employees
Enables us to monitor all web activity, which is passed through WAF cloud services
Pros and Cons
- "The most valuable features are DDoS protection."
- "Incapsula services also provides load balancing services for their service IP address environment. So far, with monitoring their services, the IP address was only changed once."
What is our primary use case?
All our web services go to the Incapsula cloud application environment for monitoring on the production service.
All the web application protection is under Incapsula because they provide the WAF protection services. Our web services are registered under their cloud environment so all our customers visit our web services. All the web services are under the web application firewall protector.
I think it's from their own cloud solution. I don't think the cloud solution is from Amazon because the IP address does not belong to Amazon. It belonged to Incapsula themselves, so their solution is under their own network cloud environment. Our own data center environment is using the Incapsula cloud service. I think it's a hybrid cloud to include all the private and the public services.
What is most valuable?
The most valuable features are DDoS protection. The Incapsula environment helps us monitor all the web activity. All the web activity is passed through their WAF cloud services, then that can help us to monitor those activities. That can help protect against DDoS hacking.
For how long have I used the solution?
We started implementing WAF under Incapsula in 2019 or 2020.
What do I think about the stability of the solution?
It's very stable because Incapsula services also provides load balancing services for their service IP address environment. So far, with monitoring their services, the IP address was only changed once. Their services are very stable.
What do I think about the scalability of the solution?
We implement the WAF production environment, or the web services, which is needed to provide traffic to the customer. We implement those services under the Incapsula WAF protection.
We have about one thousand people using the solution globally.
How are customer service and support?
If the scale is 1 to 10, technical support is a 9. Our global service team is more than 10 people. We have a whole Incapsula service team as well as our all global staff team.
Which solution did I use previously and why did I switch?
We are using our own firewall with the web application services. We used our own firewall before implementing with Incapsula, but we are also implementing it now under Incapsula cloud solutions.
How was the initial setup?
It's very simple because the domain name service is done with the CNAME. We just registered back in our DNS environment. After that, if the domain is resolved by our customer, then they will resolve the domain name which is provided by the Incapsula environment. That means all the network traffic will go through the Incapsula cloud services, and all the network activity can be monitored and protected by Incapsula WAF.
Deployment is simple and very fast. After they define the domain and service, we do some changes, and it takes within one hour. Within 15 minutes, it can transfer all the services from our site. All the network routing paths will pass through the Incapsula WAF cloud environment. It's very fast.
What's my experience with pricing, setup cost, and licensing?
The license is on a yearly basis.
What other advice do I have?
I would rate this solution 9 out of 10.
Because of all these services, you need to look at the company's services budget. If you have the budget and you can implement the web application for tech, or if you just want to move to the cloud, or you're just using your own firewall to do all those protections, Incapsula is a good option. This one just depends on the IT infrastructure budget in your own company or environment.
Which deployment model are you using for this solution?
Hybrid Cloud
Disclosure: I am a real user, and this review is based on my own experience and opinions.
CTO at CyberApp
Scalable solution for good technical support services
Pros and Cons
- "It is a stable solution."
- "It needs to be improved every time there are new attacks."
What is most valuable?
The solution has the best volumetric DDoS attacks feature.
What needs improvement?
The solution needs to be improved every time there are new attacks. They need to add new features and techniques to prevent the attacks.
For how long have I used the solution?
We have been using the solution for seven years.
What do I think about the stability of the solution?
I rate the solution's stability an eight out of ten.
What do I think about the scalability of the solution?
It is a scalable solution. It is suitable for medium and enterprise businesses.
How are customer service and support?
The solution's technical support services are fine.
Which solution did I use previously and why did I switch?
Compared with the competitors, the solution provides better security features, including web protection firewall and DDoS protection.
How was the initial setup?
The solution's initial setup process is complicated. You need to include the right security policy and discover the attack trends. The time taken for implementation depends on the project requirements.
What's my experience with pricing, setup cost, and licensing?
The solution's price is reasonable. Although, it is a bit expensive for small companies. The cost of its licenses depends on the specific project requirement.
What other advice do I have?
I advise others to study their requirements while choosing DDoS protection thoroughly. They should know if the CDN is limited to their region or has a global reach. Also, DDoS attacks appear in different ways every single time. Thus, it is challenging to implement. It is crucial to know its surface, nature, and how to implement the security measures.
I rate the solution an eight out of ten.
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Buyer's Guide
Download our free Imperva DDoS Report and get advice and tips from experienced pros
sharing their opinions.
Updated: December 2024
Product Categories
Distributed Denial-of-Service (DDoS) Protection CDN Web Application Firewall (WAF)Popular Comparisons
Cloudflare
Arbor DDoS
Akamai App and API Protector
Radware DefensePro
Azure DDoS Protection
AWS Shield
Fastly
F5 Silverline Managed Services
Prolexic
Fortinet FortiDDoS
Corero
Sucuri
Nexusguard DDoS Protection
A10 Thunder TPS
Buyer's Guide
Download our free Imperva DDoS Report and get advice and tips from experienced pros
sharing their opinions.
Quick Links
Learn More: Questions:
- F5 vs. Imperva WAF?
- We are looking at managed DNS providers and want to know what others are using
- Prolexic vs. Arbor Networks: How do they compare?
- Which is the best DDoS protection solution for a big ISP for monitoring and mitigating?
- How does a WAF help to protect against DDoS attacks?
- DDoS solutions: Any other solutions to consider aside from Radware DefensePro and F5 Silverline DDoS Protection?
- Which is the best DDoS solution and why?
- When evaluating DDoS Protection, what aspect do you think is the most important to look for?
- What is the difference between denial of service and distributed denial of service?
- How does BGP routing help to mitigate DDoS attacks?
The product works great. It would be nice if there is a TLS 1.2 only range due to the new PCI requirements.