Try our new research platform with insights from 80,000+ expert users
Fernando Silva - PeerSpot reviewer
Ingeniero at Servicios Eyenet S.A De C.V
Real User
Top 5
Useful for customer platforms and portal environments like e-commerce
Pros and Cons
  • "The tool's most valuable feature is the OWASP certification. Additionally, the tool's ability to enforce strong passwords and OTP within minutes is impressive. With its analytics and recommendations, it is a very good solution."
  • "The solution needs to be improved in the e-commerce portal."

What is our primary use case?

We use the tool for customer platforms and portal environments like e-commerce.

What is most valuable?

The tool's most valuable feature is the OWASP certification. Additionally, the tool's ability to enforce strong passwords and OTP within minutes is impressive. With its analytics and recommendations, it is a very good solution.

What needs improvement?

The solution needs to be improved in the e-commerce portal. 

How was the initial setup?

The tool's deployment is easy but can be challenging if security policies are applied together. 

Buyer's Guide
NGINX App Protect
October 2024
Learn what your peers think about NGINX App Protect. Get advice and tips from experienced pros sharing their opinions. Updated: October 2024.
814,649 professionals have used our research since 2012.

What was our ROI?

I have invested about 40,000 dollars. I expect a return of 30,000 dollars in eight months. It helps to save time. 

What's my experience with pricing, setup cost, and licensing?

NGINX App Protect is expensive. 

What other advice do I have?

I rate the overall solution a nine out of ten. We plan to integrate the tool with some applications in two months. 

Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
Flag as inappropriate
PeerSpot user
Ntwrkengine0887 - PeerSpot reviewer
Senior Network Engineer at a comms service provider with 1,001-5,000 employees
Reseller
Flexible and high availability
Pros and Cons
  • "The most valuable feature of NGINX App Protect is its flexibility."
  • "The setup of NGINX App Protect is complex. The full process took one week to complete. Additionally, we had to change the network infrastructure platform which took one month."

How has it helped my organization?

NGINX App Protect has improved the flexibility of services in our company and distributed new escalation applications. The downtime in our network has decreased substantially. In a short time, we can republish and resolve issues in our network.

What is most valuable?

The most valuable feature of NGINX App Protect is its flexibility.

For how long have I used the solution?

I have been using NGINX App Protect for approximately three years.

What do I think about the stability of the solution?

NGINX App Protect is stable.

What do I think about the scalability of the solution?

The scalability of NGINX App Protect is decent.

We have approximately 500 people using the solution in my organization. We have IT specialists that work with the core mobile network.

How are customer service and support?

We do not have technical support in Iran, we only use our own knowledge about the solution.

Which solution did I use previously and why did I switch?

I did not use a similar solution previous to NGINX App Protect.

How was the initial setup?

The setup of NGINX App Protect is complex. The full process took one week to complete. Additionally, we had to change the network infrastructure platform which took one month.

I rate the setup difficulty of NGINX App Protect a four out of five.

What about the implementation team?

We used an IT expert for the implementation of NGINX App Protect. We have three people who provide support for NGINX App Protect.

What was our ROI?

We have received a return on investment, NGINX App Protect was a good investment.

What's my experience with pricing, setup cost, and licensing?

I rate the price of NGINX App Protect a three out of five.

There are not any additional costs we had to pay to use NGINX App Protect.

What other advice do I have?

We have a complex project and we found some of our applications did not work as intended. However, moving forward we do not find we will experience this level of complexity.

I rate NGINX App Protect a nine out of ten.

Which deployment model are you using for this solution?

Private Cloud
Disclosure: My company has a business relationship with this vendor other than being a customer: Reseller
PeerSpot user
Buyer's Guide
NGINX App Protect
October 2024
Learn what your peers think about NGINX App Protect. Get advice and tips from experienced pros sharing their opinions. Updated: October 2024.
814,649 professionals have used our research since 2012.
Manager - Cyber Security (SOC) at a financial services firm with 10,001+ employees
Real User
Easy to analyze security abnormalities, stable, and the support is good
Pros and Cons
  • "The most valuable feature is that there is a link in the system that will help to analyze the security of an application when something abnormal is found."
  • "Setting policies and parameters through the UI should be more automated because the process is manual, where we can only edit one rule at a time."

What is our primary use case?

We use this solution to protect our entire set of web applications. This includes protecting against vulnerabilities as a result of programming errors.

What is most valuable?

The most valuable feature is that there is a link in the system that will help to analyze the security of an application when something abnormal is found.

What needs improvement?

This firewall should support more of the network layers.

Profiling capability should be improved.

Setting policies and parameters through the UI should be more automated because the process is manual, where we can only edit one rule at a time.

For how long have I used the solution?

I have been using the NGINX Web Application Firewall for more than a year and a half.

What do I think about the stability of the solution?

In terms of stability, this solution is much better than Imperva.

What do I think about the scalability of the solution?

In terms of scalability, depending on the application, there is a limit to how many policies I can design.

How are customer service and technical support?

The technical support for this solution has improved. Imperva used to be better, but now, NGINX is more responsive.

Which solution did I use previously and why did I switch?

I have also used Imperva. The stability and interface are better in the NGINX WAF. For example, it is easier to create new policies. Technical support from NGINX is also more responsive than that of Imperva.

How was the initial setup?

The initial setup was complex in terms of deployment and fine-tuning.

We have more than ten applications so it took us between four and five months to deploy.

What about the implementation team?

We had to contract a third-party consultant to assist us with the deployment. We are satisfied with their work

What other advice do I have?

Based on my experience, this solution is better than the other choices on the market.

I would rate this solution an eight out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Md. Al Imran Chowdhury - PeerSpot reviewer
Cyber Security Analyst at Link3 Technologies
Real User
Top 5Leaderboard
A scalable solution for application firewall with easy deployment

What is our primary use case?

We use the solution for application firewall purposes. We use both mobile and web applications.

What needs improvement?

During the NGINX App Protect v1.1 upgrade, we encountered compatibility issues with our existing telecom infrastructure, specifically the load balancer and WAF. These issues manifested as difficulties with the HTTP 1.1 protocol. While attempting to solve the problem through upgrades, we ultimately opted for alternative solutions as the desired effect could not be achieved. This highlights the technical challenges of integrating NGINX App Protect with diverse network components.

For how long have I used the solution?

I have been using NGINX App Protect for more than five years.

What do I think about the stability of the solution?

The product is stable.

I rate the solution’s stability an eight-point five out of ten.

What do I think about the scalability of the solution?

The solution is scalable.

How are customer service and support?

The customer service’s response should be faster.

How was the initial setup?

The initial setup is straightforward. For deployment, we configured basic configuration, and after mounting, We observed our application for almost four months. After that, we proceed to enforcement blocking mode. Typically, all our applications are live, so we can't block it on day one. We observed it for a long time, like six months, and then we went into step-by-step blocking mode.

Three people are required for the solution's deployment.

What's my experience with pricing, setup cost, and licensing?

The product is expensive and has a subscription-based licence.

What other advice do I have?

NGINX App Protect's high price and limited support options can be a drawback. While troubleshooting basic issues is manageable, resolving advanced problems through paid support channels can be expensive and experience delays.

I recommend the solution if the client has no financial issues regarding their WAF or LTM solutions. Still, if they are budget constraints, one should think of other options like Fortinet.

Overall, I rate the solution an eight out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Technical Expert at SFR
Real User
Highly scalable, command-line interface based solution
Pros and Cons
  • "The initial setup was simple and took three to four days."
  • "Areas for improvement would be if NGINX could scan for vulnerabilities and learn and update the signatures of DoS attacks."

What is our primary use case?

I use this solution as a web application firewall.

What is most valuable?

The most valuable feature is that NGINX uses the command-line interface, making it simple for some users.

What needs improvement?

Areas for improvement would be if NGINX could scan for vulnerabilities and learn and update the signatures of DoS attacks.

For how long have I used the solution?

I've been using this solution for about three years.

What do I think about the stability of the solution?

App Protect has good stability. 

What do I think about the scalability of the solution?

NGINX is very scalable, which is a great advantage of this product.

How are customer service and support?

The technical support is very good. 

How was the initial setup?

The initial setup was simple and took three to four days.

What's my experience with pricing, setup cost, and licensing?

NGINX is not expensive.

What other advice do I have?

I would rate this solution as eight out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Information Security Engineer at a computer software company with 1,001-5,000 employees
Real User
Beneficial reverse proxy, effective load balancer, and helpful support
Pros and Cons
  • "The most valuable feature of NGINX App Protect is the reverse proxy."
  • "The price of NGINX App Protect could improve."

What is our primary use case?

NGINX App Protect can be used as a reverse proxy, internet controller, and for caching.

How has it helped my organization?

NGINX App Protect has improved our organization by using the load balancer feature.

What is most valuable?

The most valuable feature of NGINX App Protect is the reverse proxy.

What needs improvement?

The price of NGINX App Protect could improve.

For how long have I used the solution?

I have been using NGINX App Protect for approximately two years.

What do I think about the stability of the solution?

NGINX App Protect is stable. It is lightweight and fast.

What do I think about the scalability of the solution?

The scalability of NGINX App Protect is good and it is easy to do.

How are customer service and support?

The experience I had with the technical support was good.

Which solution did I use previously and why did I switch?

We used another solution previously to NGINX App Protect. We switch to testing other solutions.

How was the initial setup?

The initial setup of NGINX App Protect is basic. The full deployment took approximately one day.

What about the implementation team?

We followed the documentation to do the implementation of NGINX App Protect in-house. We have one person that does the deployment and maintenance of the solution.

What was our ROI?

I have not seen a return on investment, it is too soon. We are only in the testing phase.

What's my experience with pricing, setup cost, and licensing?

There is a monthly or annual subscription to use NGINX App Protect. There are not any additional costs to the subscription.

I rate the price of NGINX App Protect a three out of five.

What other advice do I have?

I would recommend this solution to others because it performs well.

I rate NGINX App Protect a ten out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: My company has a business relationship with this vendor other than being a customer: Partner
PeerSpot user
Chief Technology Officer at a tech services company with 201-500 employees
Real User
A stable system with good security and load balancing
Pros and Cons
  • "The most valuable feature is that I can establish different services from the firewall."
  • "The configuration needs to be more flexible because it is difficult to do things that are outside of the ordinary."

What is our primary use case?

We use WAF as part of our security solution, protecting applications such as internet banking.

It is used both as a web application firewall and for load balancing. 

What is most valuable?

The most valuable feature is that I can establish different services from the firewall.

Using the standard configuration, it is very easy to set up.

What needs improvement?

The configuration needs to be more flexible because it is difficult to do things that are outside of the ordinary.

This solution would benefit from having a support portal that can be opened directly from the dashboard.

For how long have I used the solution?

We have been using the NGINX WAF for five years.

What do I think about the stability of the solution?

This solution is very much stable. Once it is working, it stays working. We use it on a daily basis.

What do I think about the scalability of the solution?

This solution is not really scalable. Both the virtual appliance and the physical appliance are limited in terms of how much traffic they can handle. If you need to scale up then you need to replace the box with a bigger one.

In my company, we have about 700 users. One of my customers has about 2,500 concurrent users, and another one has about 4,000. These are all internal users. I cannot tell how many external users are connecting from the internet, but it is an enormous number.

How are customer service and technical support?

It takes time to deal with technical support because they are pretty busy, but when you get the support it is very good. They know what they're talking about.

Which solution did I use previously and why did I switch?

Prior to using this solution, we tried open-source pfSense. However, most of my customers went to F5.

How was the initial setup?

The initial installation is very simple. However, there is one issue with security certificates.

Any system that you publish that is a secure system needs to have a certificate implemented, and that is always a struggle. We have plenty of customers with this solution, and every time that we get to the step involving the certificate, extra work is required. It never works smoothly. You always have to go and manipulate the certificate and the system just to set it up. I'm not sure about the latest systems, but in the old models, this could not even be done through the GUI. You had to use the command line, even though the certificate is visible in the GUI. A combination of commands is required just to make it work.

The length of time to deploy a basic system is very short. For more complex scenarios, it can be a long process.

What about the implementation team?

We do have a consultant to assist us with deployment. We do the initial configuration, but when it comes to things that don't work then we speak with F5 directly. 

We have two people in place to maintain this product. One is from IT and the other takes care of the networking aspect.

What's my experience with pricing, setup cost, and licensing?

The licensing fees for this solution are pretty expensive for what it does, but there is no alternative. The only alternative is Imperva, but that is even more expensive.

Which other solutions did I evaluate?

There is not much variety when it comes to web application firewalls that are also load-balancing solutions. Imperva is an alternative, although it is more expensive.

What other advice do I have?

My advice for anybody who is implementing this solution is to plan well. You have to make sure that you plan ahead and know what it is that you want to achieve, then gather all of the relevant information. Otherwise, if you start to configure it and then find out that you don't have the right application server, or the right policy, or the proper certificate to install and configure it, then the installation will be very long. On the other hand, if the plan is very good and you have all of the details in advance, along with the right people to test it, then it should be straightforward.

I would rate this solution an eight out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Senior Network Administrator at Nexio South Africa
Real User
Top 20
Stable solution with efficient security management features
Pros and Cons
  • "It has the best documentation features."
  • "Its technical support could be better."

What is most valuable?

The solution has the best traffic management and security management features. In addition, it has good interface and documentation features. Also, it integrates with other solutions.

What needs improvement?

The solution's technical support could be better.

For how long have I used the solution?

I have been using the solution for six years.

What do I think about the stability of the solution?

It is a stable solution.

What do I think about the scalability of the solution?

We plan to increase the solution's usage in our organization.

How are customer service and support?

The solution's technical support team is good. Although, sometimes they ask us to provide the configuration file instead of addressing the current technical issue. Most of the time, the error doesn't need a configuration file to resolve it.

How would you rate customer service and support?

Positive

What was our ROI?

The solution generates a return on investment.

What's my experience with pricing, setup cost, and licensing?

The solution's price is reasonable. Its license renewal costs around R200,000.

What other advice do I have?

The solution requires essential training to understand the functionality. I rate it a ten out of ten.

Which deployment model are you using for this solution?

On-premises
Disclosure: I am a real user, and this review is based on my own experience and opinions.
PeerSpot user
Buyer's Guide
Download our free NGINX App Protect Report and get advice and tips from experienced pros sharing their opinions.
Updated: October 2024
Buyer's Guide
Download our free NGINX App Protect Report and get advice and tips from experienced pros sharing their opinions.