We performed a comparison between Barracuda WAF-as-a-Service and Fortinet FortiWeb based on real PeerSpot user reviews.
Find out in this report how the two Web Application Firewall (WAF) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable features of the solution are it is plug and play, has automated policies, a simple configuration, and is easy to create rules."
"The solution can be used for threat prevention or as a cloud-to-cloud backup system"
"It provides an ease of policy management."
"The product's bot protection feature is valuable for our company."
"I like its ability to identify known attacks, including DDOS attacks. It's valuable because software must be able to stop known attacks. Application attacks are evolving all the time. When it comes to software-as-a-service, we need to have software that knows about all the latest attacks. It should also protect against major unknown attacks."
"It is a good product. We have just blocked everything coming from some geographical locations or certain countries, and it has been working very efficiently when I look at logs, events, and incidents generated from the system. It is generating very good analytic reports about it. This is the most valuable thing about this solution. It has load balancing and almost everything that a web application firewall needs. It is very flexible and easy to learn and configure. It can be easily learned and configured by using the information available on different channels such as YouTube."
"Both the internal firewall management and the cloud can be managed by a single console."
"The deployment was very easy."
"Fortinet FortiWeb has improved my organization by protecting our customer's web infrastructure environment."
"It is a stable product."
"When it comes to blocking unknown threats and attacks, I would give it the highest score possible. We first started using AWS and its Web Application Firewalls. That was okay, but it was quite a manual process to keep it up to date, whereas Fortinet is always up to date, and the default rules or the modules that you can turn on are very easy to use."
"The most valuable feature in this solution is the ability to disseminate between the user entering some wrong value to the field, and a suspicious actor trying to exploit some known vulnerability."
"I like FortiWeb's usability and ease of configuration. It's simple to configure rules and exceptions inside the attack log. We block everything by default. If something isn't working, we ask the system admin to adjust the template and add exceptions."
"The solution can improve by bundling Security Operation Center (SOC) with the WAF-as-a-Service, it would provide a lot more value to customers."
"It's a very specific solution that is only requested for a customer's web code or their global IT policy."
"One significant area for improvement in Barracuda WAF-as-a-Service lies in its market positioning and pricing strategy."
"The stability of the product is an area of concern where improvements are required."
"We found it a bit slow when accessing it through the web browser. The URL also exposed the user name and the hashed password. When I log into my Barracuda WAF user portal, I could see the username and the hashed password on the URL itself. So, it is not very secure, and it is important to take that off."
"We have had problems with deployments where we've had to contact technical support to resolve them."
"We use Kubernetes, so I would like to have a plugin to configure FortiWeb Cloud automatically using Kubernetes Ingress. That would reduce the complexity of setting up an Ingress object in Kubernetes. Some competing solutions help you configure Ingress and Kubernetes automatically."
"Fortinet FortiWeb could improve in reference architecture for different deployment scenarios."
"Centralized configuration using FortiManager – like what exists for NGFW FortiGate appliances - would improve the configuration."
"The solution could improve by providing more integration with solutions other than the Fortinet family."
"The upgrade process could be a bit smoother."
"The initial setup in our data center was somewhat complex."
"The solution is not very scalable, to scale up would require another deployment with a new appliance and a change to the network."
Barracuda WAF-as-a-Service is ranked 29th in Web Application Firewall (WAF) with 5 reviews while Fortinet FortiWeb is ranked 4th in Web Application Firewall (WAF) with 83 reviews. Barracuda WAF-as-a-Service is rated 7.2, while Fortinet FortiWeb is rated 8.0. The top reviewer of Barracuda WAF-as-a-Service writes "Easy to install platform with valuable policy management features ". On the other hand, the top reviewer of Fortinet FortiWeb writes "Cost-effective, easy to configure, and works very well as a single solution for multiple environments". Barracuda WAF-as-a-Service is most compared with Cloudflare Web Application Firewall, whereas Fortinet FortiWeb is most compared with F5 Advanced WAF, Fortinet FortiADC, AWS WAF, Azure Web Application Firewall and Imperva Web Application Firewall. See our Barracuda WAF-as-a-Service vs. Fortinet FortiWeb report.
See our list of best Web Application Firewall (WAF) vendors.
We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.