Fortinet FortiADC vs Imperva DDoS comparison

Fortinet FortiADC is a robust application delivery controller (ADC) that delivers application optimization, application security, and application availability. FortiADC is a valued offering from Fortinet, which is widely recognized as a trusted supplier of dynamic security solutions worldwide. FortiADC offers dynamic security functions (AV, DDoS, and WAF) in addition to advanced application connectors for a simplified deployment and complete transparency to an organization's networks and applications. FortiADC offers three primary deployment options: physical machine, virtual machine, (VM) and cloud solution options.

Fortinet FortiADC Benefits

• FortiADC security protocol: FortiADC integrates with FortiSandbox to improve the overall antivirus security protections where every file is scanned for known and unknown malicious risks. If a file is identified as malicious or problematic, it will be blocked in the future.
  
  
• SSL protocol: FortiADC securely uses the most up-to-date cryptography to provide exceptional encryption and decryption using a hardware-based SSL ASIC. FortiADC offers complete transparency to inspect all traffic for threats, improves server response time, and reduces backend server load, SSL inspection and SSL offloading. FortiADC integrates seamlessly with Gemalto’s SafeNet Hardware Security Module (HSM).
  
  
• FortiADC connectors: FortiADC Fabric Connectors offer open API-based integration and coordination with numerous software-defined networks (SDNs), third-party partners, and cloud management providers. Fortinet Fabric Connectors provide deep open and turnkey integration with recognized third-party vendors such as AWS, K8s, OCI, and SAP, in multi-vendor solutions, improving scalability, simplified management, and automation.
  
  
• Business stability: FortiADC load balancing for on-premise global server load balancing (GSBL) and in the cloud (FortiGSBL Cloud) will ensure users can maintain a reliable and available network by improving the ability of scaling applications throughout numerous data centers to reduce application response times and enhance disaster recovery. Users are able to define protocols based on network latency concerns, overall data performance, and site availability.

Fortinet FortiADC Features

• Application availability
  
  
  • 4-7 application load balancing: DNS, HTTPS, RTMP, RADIUS, MySQL and more
    
    
  • External fabric connectors: Splunk Integration, AWS/OCI Connector, Kubernetes Service.
    
    
  • Security fabric connectors: FortiSIEM, Fortigate BanIP Integration, FortiAnalyzer, and more.
    
    
  • Deployment modes: High availability (AA/AP Failover), Router mode, transparent mode (switch), one-arm mode (proxy with X-forwarded for support.
    
    
• Web application firewall (WAF)
  
  
  • Security services: Captcha support, cookie support, HTTP header security, XML/SOAP/JSON validation, CSRF protection, API gateway, and more.
    
    
  • Application security: Web attack signature, bot detection, web vulnerability scanner, OWASP Top-10 Wizard, API protection and more.

• Application enhancement
  
  
  • HTTP and TCP improvement: TCP buffering, HTTP compressions/decompression, HTTP caching (dynamic and static objects), Bandwidth monitoring using quality of service (QoS), TCP buffering, and more.
    
    
  • Authentication offloading: Two-factor authentication (Fortitoken/Fortitoken Cloud and Google Authentication), NTLM, AUTH2.0, SAML 2.0 (SP and Idp) RADIUS, LDAP, Kerbos, and local.
    
    
  • Networking: Integration with Ansible, Cisco ACI, OpenStack and Nutanix, NVGRE and VXLAN support, VLAN and port trunking support, IPv6 Support (SLB, firewall, routing and interfaces), Dynamic NAT, Hide NAT, Static NAT for added scalability and flexibility.
    
    
  • Management: Syslog support, SNMP using private MIBs with threshold-based traps. REST APIs, VDOMS, data analytics, real-time monitoring graphs, role-based monitoring, intuitive reporting, FortiView integration, and more.

Imperva DDoS is a solution that offers protection for web applications and websites and all their associated business-critical data from cyberattacks. The cloud-based application delivery service helps improve user experiences by improving their performance. Through its security platform, Imperva DDoS also provides DDoS mitigation, a web application firewall, and a global load balancer, and includes a content delivery network — all designed to maximize performance.

Imperva DDoS Features

Imperva DDoS has many valuable key features. Some of the most useful ones include:

• API security
• Web application firewall
• Bot management
• Application delivery
• Runtime protection (RASP)
• Discovery and assessment
• Data protection
• Data risk analytics
• Data privacy
• Application delivery control (ADC)
• Content delivery network (CDN)
• DDoS mitigation
• Global server load-balancing (GSLB)
• Web application firewall (WAF)
• Client-side protection
• Runtime protection

Imperva DDoS Benefits

There are several benefits to implementing Imperva DDoS. Some of the biggest advantages the solution offers include:

• Reduce web application risk: Imperva DDoS includes automatic policy creation and fast rule propagation that give your IT and security departments the ability to use third-party code without risk while working at the pace of DevOps.

• Security from edge to database: Imperva DDoS’s WAF feature secures from edge to database, so the traffic you receive is only the traffic you want.

• Safeguard sensitive and personal data: Imperva DDoS provides visibility into sensitive and personal data, with the controls to protect that data and the ability to unify management across cloud, on-premises, and in hybrid environments to help accommodate changing threats, new regulations, and challenging audits.

Reviews from Real Users

Below are some reviews and helpful feedback written by Imperva DDoS users.

PeerSpot user, Etienne W., CDN & Cybersecurity Engineer - Web performance & security at CDN Tech / Ecritel, says, “It is a good solution that allows us to protect websites. It is stable, scalable, quick and easy to use.” He goes on to explain, “WAF protection works almost out-of-the-box. The Anti-DDoS mitigation in less than 1s, I saw it many times in production, I can say it works. CDN has high performances, and the Smart Caching mode is really "smart" (you can do some efficient caching even if you're not a specialist). Its unique interface for managing security performance and ease of use are the most valuable features of this solution."

An IT Senior Manager at an outsourcing company mentions, “The most valuable features are DDoS protection. The Incapsula [Imperva DDoS] environment helps us monitor all the web activity. All the web activity is passed through their WAF cloud services, then that can help us to monitor those activities. That can help protect against DDoS hacking.”

Another PeerSpot reviewer, Ben D., Sales Executive at EVVO LABS, comments, "Imperva Incapsula [DDoS] has many valuable features. One, it protects the top 10 OWASP vulnerability, the open web application software platform, this is standard. Secondly, it protects against broken authentication. As well, it has remote execution of code."

A Solutions Architect at a financial services firm states, “The solution's most valuable aspect is that it is easy to configure. The solution keeps itself up to date itself and there's no customization that we need to do. It makes it extremely easy and cuts back on the amount of work required, and saves us on man-hours.”