We performed a comparison between Fortinet FortiWeb and Imperva DDoS based on real PeerSpot user reviews.
Find out in this report how the two Web Application Firewall (WAF) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."Other than the additional security with exploit protection, we have simpler certificate handling, as we can keep internal servers using internal certificates continuously distributed and updated by Active Directory Group Policy, while the public certificates become updated only in a single place, FortiWeb itself."
"The customers are very happy with this solution because of two things. First, the IPS integration with a web application is very tightly done on Fortinet. Second, the ease of use is there. The management interface or the GUI interface is very easy to use, configure, and manage. These are the two main valuable features. It supports integration with other Fortinet products. It also integrates very well with the firewall and sandboxing technology. They already have enough integration with different technologies. They have got a complete tech intelligence view of the whole product."
"Fortinet FortiWeb is priced well."
"FortiWeb offers machine learning in the latest product. This fixed many problems. There are no false negatives."
"Security Fabric integration. This is really a value-added feature as FortiWeb can interact with the rest of the client’s Fortinet pack to provide an intelligent security layer like (FortiSIEM for central log management and correlation, FortiGate, FortiSandbox for malware analysis, etc.)."
"It's the extra security that is the most valuable feature. You have insight into your traffic. There are some great insights into what utilities hackers are trying to exploit. It blocks a lot of stuff from the internet."
"FortiWeb is easy to operate with a reasonably high level of protection. FortiWeb provides multiple deployment options with a physical or virtual (FortiWeb-VM) appliance, and acts either as a reverse/transparent proxy or out-of-band. It is also available on AWS and Azure."
"The initial setup is pretty straightforward."
"It is an effective threat mitigation tool."
"We use Imperva DDoS to stop DDoS attacks and reduce the amount of unwanted queries against web services or web scraping."
"Technical support was very helpful."
"They're quite easy to install and quite easy to set up. Clients really like that. Especially when you're dealing with the cloud, it's really easy."
"The complete solution is valuable for everything it delivers and the protection it offers."
"Gives us the ability to trace each connection, and to have logs to be able to differentiate between a positive and a false-positive intruder action."
"Imperva DDoS is fairly stable, and its availability is quite high."
"On the site security, I can see which countries have incidents, whether it was a robot attack, a real human user, or non-human user."
"A better load balancer is needed when multiple servers are used for the same website."
"No solution is 100% secure and the security could always be worked on."
"The integration with other products should be improved."
"The memory use in each of the appliances is problematic."
"The Layer 7 DDoS attacks need improvement, it could be better."
"Most of the deployment is done by our development team because they have some parameters that match the configuration. However, when we initially did the deployment we used a consultant company."
"We would like to know more about the integration with the hardware or security products, such as Gemalto, because we need to move to that point."
"I would like to see the Application Delivery Control (ADC) and Web Application Firewall (WAF) combined in one device."
"Some maintenance must be performed by our IT team."
"It would be beneficial to include vulnerability management in the solution, similar to what they have for their on-premise solution."
"I would like to see automated reporting to improve visibility."
"The solution needs to improve Integration with third parties for their on-prem deployment models. The integration is not that good yet."
"Its price could be improved. It is quite expensive. It will be good if we could export the configuration. Currently, to control the configuration, we need to go to each website, which is not very convenient."
"The salespeople tend to exaggerate its capabilities, which can cost you money if you don't verify the information."
"There’s nothing that’s missing in terms of features."
"The solution should integrate with something that looks at continuous security management."
Fortinet FortiWeb is ranked 4th in Web Application Firewall (WAF) with 83 reviews while Imperva DDoS is ranked 18th in Web Application Firewall (WAF) with 74 reviews. Fortinet FortiWeb is rated 8.0, while Imperva DDoS is rated 8.8. The top reviewer of Fortinet FortiWeb writes "Cost-effective, easy to configure, and works very well as a single solution for multiple environments". On the other hand, the top reviewer of Imperva DDoS writes "I like the content monitoring feature which I haven't seen in other WAF solutions". Fortinet FortiWeb is most compared with F5 Advanced WAF, Fortinet FortiADC, AWS WAF, Azure Web Application Firewall and Imperva Web Application Firewall, whereas Imperva DDoS is most compared with Cloudflare, Akamai, Arbor DDoS, Radware DefensePro and Imperva Web Application Firewall. See our Fortinet FortiWeb vs. Imperva DDoS report.
See our list of best Web Application Firewall (WAF) vendors.
We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.