We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
"Good dashboard and reporting."
"In terms of F5 Advanced WAF's most valuable features, I would definitely say its stability. F5 is one the most stable products. Either as the load balancer or the web application firewall, it is very stable."
"I like all of the features, but the main one is the attack signatures."
"There is no need to worry about updating signatures because WAF will automatically update the signatures for you."
"The support experience is better than average."
"Feature-wise, they are always cutting edge and up-to-date. Many features aren't available via competitors. There's always a lot of enhanced critical features that just aren't available through anyone else, or, if they are, are too lightweight."
"The valuable features vary from customers to customers. Some customers are okay with the basic features of the WAF, and some customers use advanced WAF with a few other features."
"The most valuable feature is that it is secure."
"Traffic Learning is the most valuable feature."
"Good application firewall."
"The most valuable feature is the proxy."
"iRule feature is useful."
"F5 has many capabilities for load balancing and web application firewall features."
"We always use technical support and the team helps us very well. They're able to effectively find and fix issues and they respond very quickly."
"The product is quite flexible."
"This is a solution that does what it's supposed to do at the price point."
"Scalability could be improved."
"I would say their graphical interface, the GUI. I don't like the GUI as much as before."
"The BIG-IQ is supposed to centralize the management for all of the boxes but it's not very effective."
"The contextual-based component needs a lot of help to catch up with the next-gen products."
"There is a learning curve that extends the time of implementation."
"We usually use a third-party tool for logging and reporting. It would be nice if we could do that right on this solution. They have one, but it's not very stable. Logging and reporting effectively would be a big enhancement."
"It should be a little bit easy to deploy in terms of the overall deployment session. One of our customers is a bit unhappy about the reporting options. Currently, it automatically deletes event logs after some limit if a customer doesn't have any external Syslog server. It is a problem for those customers who want to review event logs after a week or so because they won't get proper reports or event logs. They should increase the duration to at least a month or two for storing the data on the device. F5 is not a leader in Gartner Quadrant, which affects us when we go and pitch this solution. Customers normally go and take a look at such annual reports, and because F5 is currently not there as a leader, the customers ask about it even though we are saying it is good in all things. F5 is not known for something totally different or unique. They were a major player in ADP, and they are just rebranding themselves into security. They should improve or increase their marketing as a security company now. They have already started to do that, but they should do it more so that when it comes to security, customers can easily remember F5. At the moment, if we say F5, load balancing comes to mind. With rebranding and marketing, all customers should get the idea that F5 is now mainly focusing on the security part of it, and it is a security company instead of load balancing. This is the first solution that should come to a customer's mind for a web application firewall."
"The interface is old-looking, it's not modern, which is why it's not always comfortable to use."
"This is a very expensive solution."
"It's a very expensive solution."
"If they made it easier for engineers to get F5 training then it would be better."
"Reporting could be improved and configuration made easier."
"The logging features are too limited and do not give us a solid understanding of what's happening."
"The web interface could be better."
"The cost of the solution is pretty high. It would be ideal if it was more reasonable."
"If we decide to migrate to the cloud, I don't think that BIG-IP is a good solution and we probably won't use it."
"It's more expensive than other solutions and depending on the modules, there can be additional fees."
"F5 bundles up services and the bundle is what you pay for rather than individual components."
"Its price is fair. We have done a couple of deals where they were able to give some kind of discount to the customers. The price was initially high for the customers, but after a couple of negotiations, it came within their budget. They were happy with that."
"There are various plans available for Fortinet FortiWeb Cloud WAF as a Service, including a trial version."
"It is expensive. Its price should be better. Its licensing is on a yearly basis. Its licensing is also based on the model. There are no additional costs."
"I don't have any issue with the pricing of this solution."
"There are additional costs depending on what modules or what functionality is required."
"F5 pricing is too high, compared to Citrix."
"When we purchased additional licenses for our other locations, we received a discount of between 20% and 25%."
"F5 BIG-IP can be expensive, although there are trial versions available which are helpful to find out if the solution is right for your company."
"The price should be reduced because it is expensive when compared to the competition."
"The solution is quite expensive if we compare it with the competition."
"It is a bit expensive product. Kemp Loadmaster is much cheaper than F5. Its licensing is on a yearly basis. It can be for one year or three years."
"The price of the solution is sometimes expensive."
F5's Advanced WAF is built on proven F5 technology and goes beyond reactive security such as static signatures and reputation to proactively detect and mitigate bots, secure credentials and sensitive data, and defend against application denial-of-service (DoS). Advanced WAF redefines application security to address the most prevalent threats organizations face today.
Advanced WAF is offered as an appliance, virtual edition, and as a managed service—providing automated WAF services that meet complex deployment and management requirements while protecting your apps with great precision. It is the most effective solution for guarding modern applications and data from existing and emerging threats while maintaining compliance with key regulatory mandates.
Advanced WAF redefines application security to address the most prevalent threats organizations face today:
•Web attacks that steal credentials and gain unauthorized access across user accounts.
•Application layer attacks that evade static security based on reputation and manual signatures.
•New attack surfaces and threats due to the rapid adoption of APIs.
•OWASP Top 10 vulnerabilities
F5 BIG-IP LTM optimizes the speed and reliability of your apps via both network and application layers. Using real-time protocol and traffic management decisions based on app and server and connection management conditions, and TCP and content offloading, BIG-IP LTM dramatically improves application and infrastructure responsiveness. BIG-IP LTM's architecture includes protocol awareness to control traffic for the most important applications. BIG-IP LTM tracks the dynamic performance levels of servers and delivers SSL performance and visibility for inbound and outbound traffic, to protect the user experience by encrypting everything from the client to the server.
BIG-IP LTM provides enterprise-class Application Delivery Controller (ADC). You get granular layer 7 control, SSL offloading and acceleration capabilities, and advanced scaling technologies that deliver performance and reliability on-demand. The highly optimized TCP/IP stack combines TCP/IP techniques and improvements in the latest RFCs with extensions to minimize the effect of congestion and packet loss and recovery. Independent testing tools and customer experiences show LTM's TCP stack delivers up to a 2x performance gain for users and a 4x increase in bandwidth efficiency.
F5 Advanced WAF is ranked 4th in Web Application Firewall (WAF) with 11 reviews while F5 BIG-IP Local Traffic Manager (LTM) is ranked 1st in Application Delivery Controllers (ADC) with 32 reviews. F5 Advanced WAF is rated 8.4, while F5 BIG-IP Local Traffic Manager (LTM) is rated 8.2. The top reviewer of F5 Advanced WAF writes "It is very stable as as a load balancer or a web application firewall". On the other hand, the top reviewer of F5 BIG-IP Local Traffic Manager (LTM) writes "Very stable and easy to use with a good GUI". F5 Advanced WAF is most compared with Microsoft Azure Application Gateway, Fortinet FortiWeb, NGINX App Protect, Imperva Web Application Firewall and Azure Front Door, whereas F5 BIG-IP Local Traffic Manager (LTM) is most compared with Citrix ADC, Microsoft Azure Application Gateway, NGINX Plus, HAProxy and A10 Networks Thunder ADC. See our F5 Advanced WAF vs. F5 BIG-IP Local Traffic Manager (LTM) report.
We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.