We compared Imperva DDoS and Imperva Web Application Firewall based on our users’ reviews in four categories. After reading the collected data, you can find our conclusion below.
Comparison of Results: Based on the parameters we compared, Imperva DDoS seems to be the superior solution. Our reviewers feel that because Imperva Web Application Firewall can be difficult to use, Imperva DDoS is a better investment.
"The solution has a very good interface."
"Its unique interface for managing security performance and ease of use are the most valuable features of this solution."
"We have peace of mind that nobody will use malware on us or try to hack our website."
"Imperva DDoS is fairly stable, and its availability is quite high."
"It is a stable solution."
"Integration with IBM AS/400 and Db2 is okay."
"Scalability is pretty easy on the base platform. You just add another, and you're ready to go."
"Real-time monitoring is also a great tool, as you may watch several parameters in real time."
"The most valuable features of the Imperva Web Application Firewall are DDoS, malware, and the other malicious threat prevention it provides. Additionally, third-party integration is available. You can forward the log for further analysis."
"We can prevent attacks or issues even before they happen."
"The features I have found most valuable with Imperva Web Application Firewall are account takeover protection, advanced bot protection, and API security."
"The most valuable features of Imperva Web Application Firewall are the monitoring of databases and the dashboards are easy to understand."
"If you are using the appliance as opposed to the virtual deployment, it can stand as the network layer-two and provide real transparency."
"Imperva monitors all traffic, even customer access, to the web application. Then, Imperva uses features like signatures to identify attacks like cross-site scripting or SQL injection."
"The most valuable features of the Imperva Web Application Firewall are performance and flexibility. We can extend or customize the box itself."
"Very intuitive and granular configuration - It does not require much time, or advanced knowledge, for configuration and maintenance."
"I am not sure if this application has a policy where you can create your custom policy and run it as our firewall. We should have some ability to also create some custom policy, then run it as a firewall."
"We would like them to hire people in Sweden because it's quite hard when people are sitting in the UK or Belgium because some of the customers really want them to be local."
"Incapsula services also provides load balancing services for their service IP address environment. So far, with monitoring their services, the IP address was only changed once."
"It's quite expensive."
"The log analytics interface within Incapsula isn't really good. For example, if you have to get all logs from there, it's a very cumbersome process."
"The salespeople tend to exaggerate its capabilities, which can cost you money if you don't verify the information."
"The solution should integrate with something that looks at continuous security management."
"It would be beneficial to include vulnerability management in the solution, similar to what they have for their on-premise solution."
"They can provide an option to create reports, automatically import the entire report, and create rules again. In a real-life crisis, it would be helpful to be able to import a report and generate security rules from that report. I should be able to create a simple query and import the reports automatically. It can maybe also tell us the format of the report."
"The signature updates could be faster. Sometimes we have to upload signatures to the Imperva portal for checking and analysis before we can use them."
"Imperva Web Application Firewall can improve by providing better features, such as improved prevention of zero-day attacks. Additionally, it should include a VR meta-analysis."
"They recently separated the WAF and the DAM management gateways in order for each of these to be managed from different areas, so I believe it now requires additional investments for what was previously a single complete solution."
"I don't really use it and therefore can't speak to areas of improvement."
"There could be some limitations that from the converged infrastructure perspective: when you want to converge with everything and you want Imperva to get there easily because it's not a cloud component. For example, when you want to build servers and you're using OneView to manage your software-defined networks, implementing Imperva right away is not that simple. But if you're doing just a simple cloud infrastructure with servers in there, you're good to go. Also, we are not able, with Imperva, to block by signatures. Imperva by itself needs to be complemented with another service to do URL filtering."
"I think that better bot protection is needed in this solution."
"Sometimes, support tickets don't get addressed quickly."
More Imperva Web Application Firewall Pricing and Cost Advice →
Imperva DDoS is ranked 18th in Web Application Firewall (WAF) with 74 reviews while Imperva Web Application Firewall is ranked 6th in Web Application Firewall (WAF) with 46 reviews. Imperva DDoS is rated 8.8, while Imperva Web Application Firewall is rated 8.6. The top reviewer of Imperva DDoS writes "I like the content monitoring feature which I haven't seen in other WAF solutions". On the other hand, the top reviewer of Imperva Web Application Firewall writes "Offers simulation for studying infrastructure and hybrid infrastructure protection". Imperva DDoS is most compared with Cloudflare, Akamai, Arbor DDoS, Radware DefensePro and Fortinet FortiWeb, whereas Imperva Web Application Firewall is most compared with AWS WAF, F5 Advanced WAF, Microsoft Azure Application Gateway, Fortinet FortiWeb and Cloudflare Web Application Firewall. See our Imperva DDoS vs. Imperva Web Application Firewall report.
See our list of best Web Application Firewall (WAF) vendors.
We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.