Barracuda Web Application Firewall Room for Improvement

Igor-Bashtovyi
Security Engineer at a tech services company
I think the main area for improvement in this product is learning it, as can be seen when comparing it to the F5 web application firewall. F5 has a very powerful learning phase when you start using your web application firewall against your site. The company at this time collects information and parameters about all requests, such as: file downloads, file uploads, authentication, authorization processes, etc. During this period, F5 provides you with the ability to collect most of the necessary information to make a security provision for your web application firewall. Barracuda has something like this, but not with the same functionality from my point of view. Barracuda is a little bit lower in comparison with other web application firewalls, so the best way to improve Barracuda is to develop and add new features in this area. A good point for developing this area is to describe some particular use cases. For example, the implementation demands configuration of the application in conjunction with Web Application Firewall to make it available and hosted on the internal web services of Azure. It would be great to have instructions for Barracuda with Azure infrastructure, so we could get a step-by-step manual starting from the creation of the application interface and finishing with the available site including Barracuda. We implemented Barracuda Web Application Firewall and we see who checks the whole process. Each part of this manual relates to a particular service, but it would still help those who implement it to be quicker. The bottom line is I would like to see an improved learning model to make the creation of the first policy easier and more transparent for an engineer. View full review »
reviewer1381656
Especialista en Informática at a maritime company with 5,001-10,000 employees
We've had some blocks of the application and some false positives. Barracuda needs to ensure there are fewer false positives in general. There also needs to be less of a learning curve on the application in general. That might help us eliminate false positives as well. Basically, they need to help new users better learn and understand the solution. I have an issue with the console currently. I cannot access the console from inside the network. When I access the entire network, it kicks me off all the time. I opened a case with technical support. We've checked the firewall the perimeter firewall, and we've tried to fix that problem, however, it's still the problem. I have to access the console from outside all the time to this day. View full review »
SolomonAwosina
CTO at GCET
The reporting aspect of the solution needs improvement. I don't find that it's very good. They could do some work on it to make it much better. It's not that the reporting isn't secure. It's just that I would prefer to store my reports for an extended period of time. Right now, that's not possible and I'd prefer it if that could change. I also would say that the reports themselves are expensive. View full review »
Learn what your peers think about Barracuda Web Application Firewall. Get advice and tips from experienced pros sharing their opinions. Updated: January 2021.
455,962 professionals have used our research since 2012.
SolomonAwosina
CTO at GCET
I would like to see an improved capacity to store logs so that they will be available for a longer time. From my experience, and over time, I have noticed that Barracuda appliances do not store logs for a very long time. What this means is that people have to buy the Barracuda Reporting Server. This is quite expensive, at three or four times the price of the equipment. So, if users have only one or two appliances then it doesn't make sense for them to buy a Reporting Server. If they decide to export those logs from the Barracuda appliance to a SIEM then the format of the report gets lost because Barracuda has custom reports. Where I used to work, our logs would last for about one week. However, where I am now, we do not have logs beyond one day. View full review »
Muhammed-Shafi
Presales Solutions Architect at Hilal Computers
The deployment isn't very user-friendly. There are a lot of up and coming competitors in the space, and there's always new technology coming out. The solution needs to make sure that it keeps up with what's going on in the industry to make sure they don't get left behind. The documentation is lacking. It's not like what you'd get if you were using Juniper or Cisco. They need to expand on it and make it more useful. View full review »
Carlo Bertini
IT Consultant and Project Manager at Cabar Srl
The usability of the interface could be improved. The interface is not easy to use or to configure. A feature that could be very powerful would be the capability to provide the monitoring of the security analogies, and proactive alerts in case of potential issues. The firewall protects and logs, but does not provide you with an analogy on that data. View full review »
Wealie Antar
Manager, Systems, Information Technology at a non-profit with 1,001-5,000 employees
They could improve their performance, support, and their upgrades. Their updates used to be good. Their improvements were right on the money but nowadays, the updates are minor. I don't really like the product. They restricted the number of servers we can protect. They restrict how many servers you can protect based on appliance. They also don't support additional ATP. Customers also want ATP. They want something extra apart from the basic security package. Their appliances are very cheap. The quality is not that good. Their appliances should be more robust. View full review »
reviewer1381656
Especialista en Informática at a maritime company with 5,001-10,000 employees
Sometimes when we put it in action, we have some blogs that appear as false positives. I think that it's improving. Barracuda should minimize false positives. They should make it easier to learn how to use applications. View full review »
Hamza Ahmed
Assistant to the General Manager at a tech services company with self employed
I would like to see better controlling of the traffic. View full review »
Wojciech Wo?Yniak
IT Manager at Toshiba Tec Poland
The incident reporting needs to be improved. The local technical support in Poland is not very reliable. View full review »
Samer Mahrous
Senior Operations Manager at samergl
The solution could use more reports. View full review »
Maged Magdy
Security Solutions Head at Globalsolutions
Its interface can be better. It is not very friendly. View full review »
Learn what your peers think about Barracuda Web Application Firewall. Get advice and tips from experienced pros sharing their opinions. Updated: January 2021.
455,962 professionals have used our research since 2012.