We performed a comparison between Citrix Web App and API Protection and Imperva DDoS based on real PeerSpot user reviews.
Find out in this report how the two Web Application Firewall (WAF) solutions compare in terms of features, pricing, service and support, easy of deployment, and ROI."When our primary link goes down I can still get to my Cisco devices and the NetScaler devices on-prem because of the SDN solution. If the internet connection at one of the branches goes down, we can still route them, they still get internet based on the SDN solution through one of the other sites. They can carry on working."
"The work balancing applications are the most valuable feature."
"I prefer this solution because of its user-friendly interface. I find it simple and close to what I am currently using, which is Citrix Fortiva Access for Multi-Factor Authentication. I appreciate the familiar user interface and troubleshooting tools it offers."
"The stability is good. If there is a problem, the load will be shifted to other sites automatically, which has been a good experience for us."
"We have good customer support."
"The advantage of Citrix Web App and API Protection is just its graphic user interface for beginners. The solution is nothing special, but we have to use it for the corporation. Another advantage of Citrix Web App and API Protection is that we have our copy to test things and get the know-how of it."
"Citrix Web App API Protection allows you to enable a blocking mode"
"The web application firewall which protects our services on the internet, and then of course services like our ability to provide high availability for the services we are offering are the most valuable features."
"They're quite easy to install and quite easy to set up. Clients really like that. Especially when you're dealing with the cloud, it's really easy."
"Integration with IBM AS/400 and Db2 is okay."
"The most valuable features are DDoS protection."
"I like the user-friendly interface."
"IncapRules is one of the most valuable features, as you can create your own security and access control rules on top of your security policy. Using IncapRules we were able to easily block Layer 7 DDoS attacks several times."
"It fits our requirements, as well as our budget."
"Provides Anti-DDoS protection, as well as other protections like SQL injection, Cross-Site Scripting, and antiscanner. These types of protection are valuable to the business due to the daily attacks on our portals, and that often cannot be seen without a tool like this."
"There are quite a few useful Imperva Incapsula features. For example, one of them is the reports. The graphics are very good and it's easy to configure. The whole process is very fast and reliable too. They have good tech support as well."
"An area for improvement in Citrix Web App and API Protection is for it to give real-time notifications and alerts. It would be practical if the solution warns you if there's an attack or if the load or traffic volume increases or decreases. An additional feature I'd like to see in Citrix Web App and API Protection is a prediction or artificial intelligence on what is happening, for example, attacks."
"The product could be improved by making it easier to use and easier to implement."
"I am not an expert in this solution, but simplicity and user-friendly interfaces are crucial for me. I would appreciate advice from Citrix, particularly in the form of an interactive guide for API protection. It would be helpful if they could provide specific points and recommendations for cybersecurity, indicating areas that need attention or improvement. I find such interactive guidance valuable."
"Their upgrades are not very backward compatible, and sometimes they mess up."
"The reporting is not so good. They don't have an application to connect the logs."
"The solution's pricing is a big concern and should be improved."
"Citrix Web App and API Protection could improve in the area of licensing"
"Security could be improved because then I can get rid of my Cisco firewalls. If they improve the security then I could run my security, my proxy, my firewalling and my SDN solution on one device instead of having to have multiple devices."
"Imperva DDoS does not provide version control."
"Imperva should have more points of presence in Africa."
"Its price could be improved. It is quite expensive. It will be good if we could export the configuration. Currently, to control the configuration, we need to go to each website, which is not very convenient."
"The solution needs to improve Integration with third parties for their on-prem deployment models. The integration is not that good yet."
"Some maintenance must be performed by our IT team."
"I am not sure if this application has a policy where you can create your custom policy and run it as our firewall. We should have some ability to also create some custom policy, then run it as a firewall."
"A limited tool if you're looking to customize."
"The solution should integrate with something that looks at continuous security management."
More Citrix Web App and API Protection Pricing and Cost Advice →
Citrix Web App and API Protection is ranked 20th in Web Application Firewall (WAF) with 10 reviews while Imperva DDoS is ranked 16th in Web Application Firewall (WAF) with 74 reviews. Citrix Web App and API Protection is rated 8.0, while Imperva DDoS is rated 8.8. The top reviewer of Citrix Web App and API Protection writes "Has a good graphic user interface for beginners, but lacks real-time notifications, alerts, and artificial intelligence". On the other hand, the top reviewer of Imperva DDoS writes "I like the content monitoring feature which I haven't seen in other WAF solutions". Citrix Web App and API Protection is most compared with F5 Advanced WAF, Azure Front Door, Fortinet FortiWeb, AWS WAF and Airlock, whereas Imperva DDoS is most compared with Cloudflare, Akamai, Arbor DDoS, Radware DefensePro and AWS WAF. See our Citrix Web App and API Protection vs. Imperva DDoS report.
See our list of best Web Application Firewall (WAF) vendors.
We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.