We performed a comparison between Barracuda Web Application Firewall, Checkmarx One, and F5 BIG-IP Local Traffic Manager (LTM) based on real PeerSpot user reviews.
Find out what your peers are saying about Amazon Web Services (AWS), Microsoft, F5 and others in Web Application Firewall (WAF)."Some of the most valuable features are the ease of deployment, the Barracuda support, the easy-to-use console, and the granularity of the reports."
"It significantly improved our overall web security posture, addressing intrusions and enhancing control over web URLs in our environment."
"Parameter Protection is a valuable feature."
"The initial setup is easy."
"It's very simple and predictable, because Barracuda provides a vision of the current state of your application. It gives you an understanding of what is happening on your site and any attempts against you at your source. This is the main value that Web Application Firewall provides our company. These aspects are also the main reason for this documentation process."
"The most valuable feature is the automatic content filtering."
"Has a good dashboard."
"The solution is user-friendly and easy to set up."
"The most valuable features of Checkmarx are difficult to pinpoint because of the way the functionalities and the features are intertwined, it's difficult to say which part of them I prefer most. You initiate the scan, you have a scan, you have the review set, and reporting, they all work together as one whole process. It's not like accounting software, where you have the different features, et cetera."
"The ability to track the vulnerabilities inside the code (origin and destination of weak variables or functions)."
"I like that you don't have to compile the code in order to execute static code analysis. So, it's very handy."
"Less false positive errors as compared to any other solution."
"The value you can get out of the speedy production may be worth the price tag."
"It can integrate very well with DAST solutions. So both of them are combined into an integrated solution for customers running application security."
"The UI is user-friendly."
"Compared to the solutions we used previously, Checkmarx has reduced our workload by almost 75%."
"The configuration and integration into the AWS environment was pretty easy."
"The most valuable feature is customization."
"The tech support we got from F5 BIG-IP Local Traffic Manager directly was pretty good."
"I've worked a little bit with iRules and it is amazing."
"The setup is pretty easy."
"F5's attack signatures and automation are the most valuable features. The disaster recovery capabilities are also excellent. You don't need to do anything. It has automatic failover from production."
"The solution's stability is pretty good."
"ASM for WAF."
"It would be better if their updates would be released annually."
"This product could easily progress to be among the industry leaders. I think they need to improve enterprise level automation. It integrates with a small number of vulnerability scanners, so report results should be imported manually; same for SIEM integration."
"Barracuda Web Application Firewall's load balancing feature could be improved."
"The usability of the interface could be improved."
"As most people are aware, the implementation is not easy."
"Its interface can be better. It is not very friendly."
"The GUI needs to be improved because it sometimes hangs and needs to be restarted."
"I have issues with the load balancing of the solution which is slow. The connection pooling in Barracuda also doesn't work. There is an issue when someone needs access to a site quickly. The issue is with HTTPS services. I am not sure if they have changed all these in the solution’s latest version."
"Checkmarx is not good because it has too many false positive issues."
"The integration could improve by including, for example, DevSecOps."
"You can't use it in the continuous delivery pipeline because the scanning takes too much time."
"Licensing models and Swift language support are the aspects in which this product needs to improve. Swift is a new language, in which major customers require support for lower prices."
"One area for improvement in Checkmarx is pricing, as it's more expensive than other products."
"I think the CxAudit tool has room for improvement. At the beginning you can choose a scan of a project, but in any event the project must be scanned again (wasting time)."
"We are trying to find out if there is a way to identify the run-time null values. I am analyzing different tools to check if there is any tool that supports run-time null value identification, but I don't think any of the tools in the market currently supports this feature. It would be helpful if Checkmarx can identify and throw an exception for a null value at the run time. It would make things a lot easier if there is a way for Checkmarx to identify nullable fields or hard-coded values in the code. The accessibility for customized Checkmarx rules is currently limited and should be improved. In addition, it would be great if Checkmarx can do static code and dynamic code validation. It does a lot of security-related scanning, and it should also do static code and dynamic code validation. Currently, for security-related validation, we are using Checkmarx, and for static code and dynamic code validation, we are using some other tools. We are spending money on different tools. We can pay a little extra money and use Checkmarx for everything."
"It provides us with quite a handful of false positive issues. If Checkmarx could reduce this number, it would be a great tool to use."
"The solution could improve the ease of use, the management could be simplified. Other solutions are easier to use."
"Technical support is somewhat slow and could be improved."
"BIG-IP LTM's sandboxing integration could be improved."
"The web interface could be better."
"Native support for containers should be added to future releases, as this is the future of load balancing."
"Reporting could be improved and configuration made easier."
"There are not very many areas for improvement, but the price is high."
"F5 has another solution to load balance servers on the cloud, which they got after the purchase of NGINX. It is deployed as Kubernetes or something like that, but the problem now is that they have two solutions for two situations. They should make F5 deployable on the cloud."
More Barracuda Web Application Firewall Pricing and Cost Advice →
More F5 BIG-IP Local Traffic Manager (LTM) Pricing and Cost Advice →