We performed a comparison between Cloudflare and Imperva DDoS based on real PeerSpot user reviews.
Find out in this report how the two Distributed Denial of Service (DDOS) Protection solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."I rate its stability a ten out of ten."
"When using services like Heroku, Cloudflare is very useful for CNAME flattening. I also use it for their end-to-end SSL with TLS authentication on nginx for securing servers."
"It is easier to configure and develop documentation to see how we have configured firewalls."
"DDoS attacks target unprotected machines. Cloudflare detects and stops these attacks using internal systems. It identifies incoming DDoS attacks, issuing challenges or blocking them immediately."
"The DDoS protection is the most valuable aspect of the solution."
"The web application firewall brought us good security and a view of the accesses/blocks of the entire domain and subdomain that were accessed both by region (country) and IPs."
"The solution is very good at mitigating threats."
"The most valuable feature is the web application firewall."
"On the activity log, I can see the exact details, the visit, and the threat."
"An improvement has been to our website: It increases the speed of our response, the capacity of the site, and optimizes the bandwidth."
"There are quite a few useful Imperva Incapsula features. For example, one of them is the reports. The graphics are very good and it's easy to configure. The whole process is very fast and reliable too. They have good tech support as well."
"Imperva DDoS is fairly stable, and its availability is quite high."
"The setup of Imperva DDoS was easy."
"There is no need to have an appliance in house for the services because it is on the cloud."
"Setup was straightforward, very simple. I only entered the domain and Incapsula returned the DNS data that I needed to change for the protection to be configured."
"Integration with IBM AS/400 and Db2 is okay."
"It would be beneficial for us if Cloudflare could offer a scrubbing solution. This would involve taking a snapshot of my website and keeping it live during a DDoS attack, ensuring uninterrupted service for our users. DDoS attacks are typically short in duration, and having Cloudflare maintain the site's availability from its secure network would enhance the overall user experience. I would appreciate it if Cloudflare could consider implementing this feature. Many organizations already utilize similar capabilities in their CDN platforms, where a static snapshot of the web page is displayed during DDoS attacks. In terms of features, Cloudflare needs to enhance its resilience and stay more focused on adopting new technologies. For instance, solutions like F5 XC Box, Access Solution, and Distributed Cloud Solution have impressive features, and Cloudflare should strive to match and exceed those capabilities. There's a need for improvement in areas like AI-based DDoS attacks and Layer 7 WAF features. Cloudflare should prioritize enhancements in areas such as behavioral DDoS and protection against SQL injection attacks, considering the prevalent trend of public exposure to the internet for business reasons. Overall, Cloudflare needs to invest more in advancing its feature set."
"I think the APIs are a little bit hard for us to work with. The APIs could be more open so that we could integrate better with our SolarWinds or our monitoring solution."
"Latencies are always a problem."
"The product needs to improve its automation."
"I would like Cloudflare to offer a dedicated account manager for large enterprise clients like us."
"We are a product integrator and reseller, and we would like to have a better partner relationship, similar to a channel sales relationship. Sometimes we are on our own or get diverted by Cloudflare because they have direct sales, which competes with us and makes it difficult to build a relationship with this company since we want to be an MSP or a managed service provider for the solution."
"Although I think it's quite good, it doesn't provide me with all the features I would expect to have if I were using Imperva."
"The solution could work at being less expensive. It costs a lot to use it."
"It needs to be improved every time there are new attacks."
"Imperva should have more points of presence in Africa."
"Users would benefit from better documentation. There is official documentation, but sometimes we need more detail. We have some use cases that are not so run of the mill. It would be great if there was a knowledge base that we could go to for more answers."
"The product could use a broader scope in the area of policies."
"The solution should integrate with something that looks at continuous security management."
"The log analytics interface within Incapsula isn't really good. For example, if you have to get all logs from there, it's a very cumbersome process."
"The solution needs to improve Integration with third parties for their on-prem deployment models. The integration is not that good yet."
"A limited tool if you're looking to customize."
Cloudflare is ranked 1st in Distributed Denial of Service (DDOS) Protection with 56 reviews while Imperva DDoS is ranked 7th in Distributed Denial of Service (DDOS) Protection with 74 reviews. Cloudflare is rated 8.4, while Imperva DDoS is rated 8.8. The top reviewer of Cloudflare writes "It's easy to set up because you point the DNS to it, and it's working in under 15 minutes". On the other hand, the top reviewer of Imperva DDoS writes "I like the content monitoring feature which I haven't seen in other WAF solutions". Cloudflare is most compared with Akamai, Azure Front Door, AWS Shield, Microsoft Azure Application Gateway and Arbor DDoS, whereas Imperva DDoS is most compared with Akamai, Arbor DDoS, Radware DefensePro, AWS WAF and Fastly. See our Cloudflare vs. Imperva DDoS report.
See our list of best Distributed Denial of Service (DDOS) Protection vendors and best CDN vendors.
We monitor all Distributed Denial of Service (DDOS) Protection reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.