We performed a comparison between AWS WAF and Cloudflare based on real PeerSpot user reviews.
Find out in this report how the two Web Application Firewall (WAF) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."The most valuable feature is the scalability because it automatically scales up or scales down as per our requirements."
"The customizable features are good."
"AWS WAF is something that someone from a cloud background or cloud security background leverages. If they want to natively use a solution in the cloud, AWS WAF comes in handy. It's very useful for that, and the way we can fine-tune the WAF rules is also nice."
"The most valuable features are the geo-restriction denials and the web ACL."
"AWS WAF is very easy to use and configure on AWS."
"One common use case is using detection protection for enhancing security models in AWS. Another use case is implementing log analysis and response recovery procedures for email services."
"This is not a product that you need to install. You just use it."
"As a basic WAF, it's better than nothing. So if you need something simple out of the box with default features, AWS WAF is good."
"The solution offers the flexibility to control configuration rules."
"Centralized, full-featured DNS."
"It's very user-friendly."
"Cloudflare allows us to self-host services such as Rocket.Chat and Node-RED, in high-availability mode, thanks to round robin DNS which allows us to share one hostname between our two locations."
"The simplicity of the overall dashboard makes it a great product for a user like me who has less understanding of the internet than a developer or other more technical people. It gives me peace of mind. I also love the easy customization of the Page Rules."
"New and innovative way to protect the client's data."
"Cloudflare has many features."
"Smaller businesses have seen great ROI due to the low investment and strong performance."
"It would be good if the solution provided managed WAF services."
"The product could be improved by expanding the weightage units of rules."
"The area of reporting in the product needs to have a proper format."
"AWS WAF could improve by making the overall management easier. Many people that have started working with AWS WAF do not have an easy time. They should make it easy to use."
"The product must provide more features."
"In a future release of this solution, I would like to see additional management features to make things simpler."
"We haven't faced any problems with the solution."
"Technical support for AWS WAF needs improvement."
"Sometimes their more advanced caching tools can cause higher first-byte times and problems with JavaScript."
"There are some issues with the CDN services."
"Even if I wanted to, I wouldn't be able to buy Cloudflare in my country."
"It should have easier documentation for the configuration. It's very technical and people who aren't technical should also be able to do the configuration."
"Latencies are always a problem."
"I would like Cloudflare to offer a dedicated account manager for large enterprise clients like us."
"We're facing challenges due to an upgrade in the machine learning model. The problem arises from some users abusing the APIs, resulting in an influx of suspicious traffic. Cloudflare's learning model mistakenly identifies this traffic as human. Consequently, it assigns it a higher trust score, akin to legitimate human traffic, causing complications in our architecture. Previously, such traffic would have been categorized as suspicious, enabling us to apply appropriate blocking rules. However, we encounter difficulties distinguishing between genuine and suspicious traffic with the new categorization. Despite these challenges, overall, Cloudflare remains the preferred solution compared to Azure, AWS CloudFront, and Google Cloud Armor."
"Cloudflare does not have an on-premise solution. If they had different approaches they could be better suited to accommodate more customers, such as on-premise and hybrid deployments. For example, hybrid deployments would be useful where you could move the traffic from the enterprise to the cloud."
AWS WAF is ranked 1st in Web Application Firewall (WAF) with 52 reviews while Cloudflare is ranked 1st in Distributed Denial of Service (DDOS) Protection with 56 reviews. AWS WAF is rated 8.0, while Cloudflare is rated 8.4. The top reviewer of AWS WAF writes "A highly stable solution that helps mitigate different kinds of bot attacks and SQL injection attacks". On the other hand, the top reviewer of Cloudflare writes "It's easy to set up because you point the DNS to it, and it's working in under 15 minutes". AWS WAF is most compared with Azure Web Application Firewall, Microsoft Azure Application Gateway, F5 Advanced WAF, Imperva Web Application Firewall and NGINX App Protect, whereas Cloudflare is most compared with Akamai, Azure Front Door, Imperva DDoS, AWS Shield and F5 Silverline Managed Services. See our AWS WAF vs. Cloudflare report.
We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.