We just raised a $30M Series A: Read our story

Compare AWS WAF vs. Cloudflare Web Application Firewall

Cancel
You must select at least 2 products to compare!
Featured Review
Find out what your peers are saying about AWS WAF vs. Cloudflare Web Application Firewall and other solutions. Updated: November 2021.
553,954 professionals have used our research since 2012.
Quotes From Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:

Pros
"The solution is stable.""Its best feature is that it is on the cloud and does not require local hardware resources.""The most valuable features are the geo-restriction denials and the web ACL.""The access instruction feature is the most valuable. This is what we use the most.""The security firewall plus the features that protect against database injections or scripting,""This product supplies options for web security for applications accessing sensitive information.""The most valuable feature is the scalability because it automatically scales up or scales down as per our requirements.""The most valuable aspect is that it protects our code. It's a bit difficult to overwrite code in our application. It also protects against threats."

More AWS WAF Pros »

"The security features are valuable. The particular feature we use is called OWASP.""It is configurable via API.""It is a SaaS solution unlike much of the competition.""Technical support has a very fast response time and they are helpful."

More Cloudflare Web Application Firewall Pros »

Cons
"On the UI side, I would like it if they could bring back the geolocation view on the corner.""It's a bit difficult to apply the right rules for the right security.""It is sometimes a lot of work going through the rules and making sure you have everything covered for a use case. It is just the way rules are set and maintained in this solution. Some UI changes will probably be helpful. It is not easy to find the documentation of new features. Documentation not being updated is a common problem with all services, including this one. You have different versions of the console, and the options shown in the documentation are not there. For a new feature, there is probably an announcement about being released, but when it comes out, there is no actual documentation about how to use it. This makes you either go to technical support or community, which probably doesn't have an idea either. The documentation on the cloud should be the latest one. Finding information about a specific event can be a bit challenging. For this solution, not much documentation is available in the community. It could be because it is a new tool. Whenever there is an issue, it is just not that simple to resolve, especially if you don't have premium support. You have pretty much nowhere to look around, and you just need to poke around to try and make it work right.""I would like to be able to view a graphical deployment map in the user interface that will give me an overview of the configuration and help to determine whether I have missed any steps.""We haven't faced any problems with the solution.""The pricing model is complicated.""While the complexity of the installation can vary from one service to another, overall, I would say that it and the configuration and navigation are somewhat complex.""The technical support does not respond to bugs in the coding of the product."

More AWS WAF Cons »

"It would be ideal if the solution offered better log integration and more integration with different platforms.""Their documentation could be better. They don't have documentation that explains everything well. They have documentation for everything you're looking for, but they lack a single piece of documentation to tie everything together. As a new user or beginner, it took us a little bit of time to figure out how to put all these things in place.""The ModSecurity core rules need to be updated."

More Cloudflare Web Application Firewall Cons »

Pricing and Cost Advice
"The pricing should be more affordable, especially as it pertains to small clients.""It has a variable pricing scheme.""AWS is not that costly by comparison. They are maybe close to $40 per month. I think it was between $29 or $39.""We are kind of doing a POC comparison to see what works best. Pricing-wise, AWS is one of the most attractive ones. It is fairly cheap, and we like the pricing part. We're trying to see what makes more sense operation-wise, license-wise, and pricing-wise.""It's quite affordable. It's in the middle."

More AWS WAF Pricing and Cost Advice »

"The pricing model is very straightforward compared to the competition. You just pay per month for the product and usage.""We pay $210 per month for CloudFlare WAF."

More Cloudflare Web Application Firewall Pricing and Cost Advice »

report
Use our free recommendation engine to learn which Web Application Firewall (WAF) solutions are best for your needs.
553,954 professionals have used our research since 2012.
Questions from the Community
Top Answer: Hi Varun, I have had experienced with several WAF deployments and deep technical assessments of the following: 1. Imperva WAF 2. F5 WAF 3. Polarisec Cloud WAF Typical limitations on cloud… more »
Top Answer: Our organization ran comparison tests to determine whether Amazon’s Web Service Web Application Firewall or Microsoft Azure Application Gateway web application firewall software was the better fit for… more »
Top Answer: Their technical support has been quite good.
Top Answer: The security features are valuable. The particular feature we use is called OWASP.
Top Answer: Their documentation could be better. They don't have documentation that explains everything well. They have documentation for everything you're looking for, but they lack a single piece of… more »
Ranking
Views
14,129
Comparisons
12,105
Reviews
10
Average Words per Review
576
Rating
7.8
Views
1,089
Comparisons
829
Reviews
3
Average Words per Review
566
Rating
8.0
Comparisons
Also Known As
AWS Web Application Firewall
Cloudflare WAF
Learn More
Overview

AWS WAF is a web application firewall that helps protect your web applications from common web exploits that could affect application availability, compromise security, or consume excessive resources. AWS WAF gives you control over which traffic to allow or block to your web applications by defining customizable web security rules. You can use AWS WAF to create custom rules that block common attack patterns, such as SQL injection or cross-site scripting, and rules that are designed for your specific application. New rules can be deployed within minutes, letting you respond quickly to changing traffic patterns. Also, AWS WAF includes a full-featured API that you can use to automate the creation, deployment, and maintenance of web security rules.

Cloudflare Web Application Firewall's intuitive dashboard enables users to build powerful rules through easy clicks and also provides Terraform integration. Every request to the WAF is inspected against the rule engine and the threat intelligence curated from protecting over 27 Million websites. Suspicious requests can be blocked, challenged or logged as per the needs of the user while legitimate requests are routed to the destination, agnostic of whether it lives on-premise or in the cloud. Analytics and Cloudflare Logs enable visibility into actionable metrics for the user.

Offer
Learn more about AWS WAF
Learn more about Cloudflare Web Application Firewall
Sample Customers
eVitamins, 9Splay, Senao International
crunchbase, udacity, marketo, okcupid, zendesk
Top Industries
REVIEWERS
Energy/Utilities Company25%
Media Company25%
Transportation Company13%
Manufacturing Company13%
VISITORS READING REVIEWS
Computer Software Company26%
Comms Service Provider20%
Media Company13%
Financial Services Firm8%
VISITORS READING REVIEWS
Comms Service Provider27%
Computer Software Company23%
Government7%
Energy/Utilities Company6%
Company Size
REVIEWERS
Small Business17%
Midsize Enterprise33%
Large Enterprise50%
No Data Available
Find out what your peers are saying about AWS WAF vs. Cloudflare Web Application Firewall and other solutions. Updated: November 2021.
553,954 professionals have used our research since 2012.

AWS WAF is ranked 3rd in Web Application Firewall (WAF) with 10 reviews while Cloudflare Web Application Firewall is ranked 16th in Web Application Firewall (WAF) with 3 reviews. AWS WAF is rated 7.8, while Cloudflare Web Application Firewall is rated 8.0. The top reviewer of AWS WAF writes "Use this product to make it possible to deploy web applications securely". On the other hand, the top reviewer of Cloudflare Web Application Firewall writes "A SaaS solution that is API configurable and a convenient part of a suite but needs updating of core rules". AWS WAF is most compared with Microsoft Azure Application Gateway, Imperva Web Application Firewall, Akamai Kona Site Defender, F5 BIG-IP Local Traffic Manager (LTM) and Azure Front Door, whereas Cloudflare Web Application Firewall is most compared with Azure Front Door, Microsoft Azure Application Gateway, Fastly, Signal Sciences and Indusface AppTrana. See our AWS WAF vs. Cloudflare Web Application Firewall report.

See our list of best Web Application Firewall (WAF) vendors.

We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.