2019-03-11T07:21:00Z

What needs improvement with AWS WAF?


Please share with the community what you think needs improvement with AWS WAF.

What are its weaknesses? What would you like to see changed in a future version?

Guest
1010 Answers

author avatar
Top 5LeaderboardReal User

Sometimes it's a bit difficult to check the rules because when you apply a rule, sometimes it's too much and we need to rewrite the rules and make compromises on the rules because it will block too many things. It's a bit difficult to apply the right rules for the right security.

2020-03-22T06:49:00Z
author avatar
Top 10Consultant

I would like to be able to view a graphical deployment map in the user interface that will give me an overview of the configuration and help to determine whether I have missed any steps.

2020-02-05T08:05:09Z
author avatar
Top 5Real User

A significant improvement would be built in bots protection enhancement, or seamless integration with other products. For now, there are limited feature to protect against an attack from the bad bots so users go to third party solutions, which just complicates integration and operation. A helpful additional feature would be to have a fully unified unique product, including the DDoS, with sophisticated attack capabilities including anti bot management. They should also take a look at reviewing the complexity of the integration with other third-party vendor solutions.

2019-12-05T11:14:00Z
author avatar
Real User

The solution is cloud-based, and therefore the billing model that comes with it could be more intuitive, in my opinion. It's very easy to not fully understand how you tag things for billing and then you can quite easily run up a high bill without realizing it. The solution needs to be more intuitive around the tagging system, which enables the billing. Right now, I have a cloud architect that does that on our behalf and it isn't something that a business user could use because it still requires quite a lot of technical knowledge to do effectively.

2019-09-08T09:50:00Z
author avatar
Consultant

The solution could be faster in detecting threats. They should work to define more threats, add more security, and make it more compliant with more security companies. The solution could always be more automated.

2019-09-05T16:30:00Z
author avatar
Real User

In a future release I would like to see automation. There's no interaction between the applications and that makes it tedious. We have to do the preparation all over again for each of our other applications.

2019-03-11T07:21:00Z
author avatar
Consultant

We need more support as we go global. The UI could use improvement.

2019-03-11T07:21:00Z
author avatar
Real User

The user experience, the interface, is lacking. Sometimes it's hard to find certain areas that it has alerted on. Also, more fine-tuning would be convenient.

2019-03-11T07:21:00Z
author avatar
Real User

In a future release of this solution, I would like to see additional management features to make things simpler.

2019-03-11T07:21:00Z
author avatar
Real User

I would like them to fortify the system more. In every software platform there are issues or bugs, even though presently, there aren't many known and it is running without problems. They have to do more to improve, to innovate more features. They need to increase the security. It has to be more active in detecting threats. It's better for the system if the platform is more proactive in detecting threats immediately, so that technicians or people on the security team will know that a threat is coming in.

2019-03-11T07:21:00Z
Learn what your peers think about AWS WAF. Get advice and tips from experienced pros sharing their opinions. Updated: July 2020.
442,764 professionals have used our research since 2012.