Barracuda Web Application Firewall Reviews

I am a system integrator and this is one of the solutions that I implement for my customers.

The most valuable feature of this solution is the simplicity of configuration. 

This solution makes management easy.

I really like the firewall weblog that allows me to see what is being blocked, why, and how I can apply a fix.

I would like to see an improved capacity to store logs so that they will be available for a longer time. From my experience, and over time, I have noticed that Barracuda appliances do not store logs for a very long time. What this means is that people have to buy the Barracuda Reporting Server. This is quite expensive, at three or four times the price of the equipment. So, if users have only one or two appliances then it doesn't make sense for them to buy a Reporting Server. If they decide to export those logs from the Barracuda appliance to a SIEM then the format of the report gets lost because Barracuda has custom reports.  Where I used to work, our logs would last for about one week. However, where I am now, we do not have logs beyond one day.

I have been using this solution for about ten years.

This is a very stable appliance.

This physical appliance is not a solution that scales because once I use it at capacity, I have to buy a new one. The virtual appliance is scalable because if I am at capacity then I can increase my license to another plan.

For the WAF, capacity is not a function of the number of users. Rather, it is based on the servers that it is protecting. Two of my current clients and one hundred and fifty, and two hundred and fifty users, respectively.

Technical support for this solution is wonderful. It is not just for the firewall, but all of Barracuda has good support. I have been dealing with them since 2009, and in my experience, they attend to you. They take the time to explain things. Even if you want to consider something new, they will guide you on what to do.

Overall, I would rate their support very high.

The initial setup of this solution is very straightforward.

When I first set up this solution in 2009, it was for my company and I didn't require assistance from anybody. I later when for training, and am now an integrator. Today I set this solution up for other companies, and I can say that the initial setup has been straightforward all along.

Definitely, I would recommend Barracuda because of its simplicity. I know that they are now integrating the Web Application Firewall on Prime, in the cloud, as well.

The only thing that is a challenge for me is storage, which limits my reporting.

I would rate this solution a nine out of ten.

We primarily use this solution for firewalls.

The features are all fine. We just fixed some bugs from three months ago, and we're waiting now for a final review. They sent us some features to fix the issue.

The solution could use more reports.

I've been using the solution for 6 months.

I find the solution very stable.

Technical support has been good. Currently, we don't have any issues.

This is the first solution we are using.

The initial setup was very straightforward. We applied what we needed to use and added different features. Each time we need to use a different feature, we go through configuring it and including more features as necessary. 

I used my own team for the implementation. 

We did not evaluate other options before choosing this solution.

I manage and operate the device. We are working with the operation team each time applying manual updates, which is continuous. I'd like to see different information, to help handle issues in an easier way. 

I would rate the solution a 9 out of 10.

The primary use case is to protect from DDoS attacks and to protect my backend servers. That was the main concern for me. Barracuda has been very good. I'm very happy with the product.

Previously, attacks would make the systems go down and we couldn't connect with our customers and other things. We need our servers to be online 24-7 which is why I chose Barracuda. Now our servers are running smoothly and I have no problem running my servers.

The volumetric DDoS defense is very good because I had a problem with a lot of volumetric DDoS attacks on my servers. After using Barracuda, those attacks have stopped, all of the traffic is going smoothly to my servers and the system is working really well.

I would like to see better controlling of the traffic. 

Less than one year.

The stability is very good. I would give it four and a half stars out of five.

The initial setup was straightforward. It was easy to deploy. It took six to seven hours of work a day to deploy every policy that I wanted. The initial setup went well, there weren't any issues with it. 

I would rate it a nine out of ten. The attacks that we used to get on servers are gone. My servers are now running 24-7 and I have no problems with them.

The updating and signature features are my primary use case for the solution. These features are beneficial to my organization.

I would like this solution to be more detective of the needs of the organization.

One to three years.

I encountered issues with the stability of the product.

I encountered issues with scalability.

I would rate the level of tech support a six out of ten. 

I would suggest that someone implementing this product is knowledgeable in the IT field and with the network needs. It is complex.

We use it for low balancing phase servers.

It allows us to scale out to multiple phase servers.

It is a great product. We are very pleased with it.

It works exactly by design. It works very well.

There are no stability issues.

There are no scalability issues.

Their technical support is great.

If you are a networking guy, the initial setup is straightforward. If you know nothing about networks, then you can't set it up.

They have competitive pricing.

We use it for mail protection.

It has helped the organizational function because we do not have an application hosted product. 

It mainly provides good support, and it is a good web application for us.

One to three years.

It is not stable nor mature, though it is not a problem for us.

We have had scalability issues. However, since we do not have that many applications, it is not an issue for us.

Technical support is very good.

We did not previously use another solution.

The initial setup was very straightforward.

The pricing is less compared to other web applications, which is important to us.

We compared the solution to Imperva because of the support. Support is important to us.

Just do it. We run it with no downtime, because it has good support.

I have two primary use cases, one for a bank and the other one for an operator. I will speak about the bank case. The environment is very critical: securing an e-banking server and SMS banking.

This product gives us visibility into what is going on in two servers, including connections and sessions, real-time alerts, very good reporting, and KPIs.

It makes managing security of a critical server very easy with a friendly GUI.

There is no one special feature, but the WAF itself is valuable: user-friendly protection against web attacks etc., authentication, reporting, accountability, alerting, and hardened OS.

This product could easily progress to be among the industry leaders. I think they need to improve enterprise level automation. It integrates with a small number of vulnerability scanners, so report results should be imported manually; same for SIEM integration.

More than five years.

Very stable product.

No issues with scalability.

Best support I have ever seen. I have experience with several products and their support. Barracuda support is very special: efficient, quick replies.

There was some complexity because it requires special configuration in addition to some network changes.

Very good price compared to other products. Some products, like Fortinet, give you good performance as well, and their price is probably lower than Barracuda, but you should pay attention to renewal prices and options. The BWAF license includes everything, even cloud control, which requires a license in other products.

OPEX/CAPEX should be looked at closely.

Fortinet, but BWAF was much better.

I would rate it a 10 out of 10 because all requirements from a product are there: very good performance, robust equipment, pentest/vul scan success, very good support. The cost to value ratio is tops.

If you have a limited budget it’s the best, and if you have an open budget why spend more since BWAF can do the job.

1) The Barracuda Networks Web Application Firewall can protect your vital web applications from various exploits by hackers. 2) Can be easily deployed and configured. 3) Can be used to protect many applications, like Microsoft Outlook Web Access, Oracle, FTP, SharePoint, XML, etc. It can also protect custom applications deployed within the environment. 4) Can be very easily integrated with Active Directory and various 2-factor authentication systems. 5) Has a built in virus scanner for any data uploads. 6) Reasonably priced 7) Checks both Inbound and Outbound traffic to ensure protection against any type of data leakage and theft. 8) Barracuda Web Application Firewall has a built in load balancer, which can easily distribute traffic to multiple backend servers.

1) Generally speaking, the more complex your web application is, the greater the risk. Older sites are highly vulnerable to application layer security threats. Barracuda Networks Web Application Firewall is not tightly equipped to handle application layer security threats. 2) For SSL enabled sites, Barracuda Networks Web Application Firewall requires the duplication of the SSL certificate. This can pose SSL penetration and also significant scalability challenges. 3) Customer service and online support system is a bit slow and needs improvement.

One of the best Web Application Filters to protect your web applications, like FTP, Microsoft Outlook Access, Sharepoint, etc. from hackers. Ease of integration, with various 2-factor authentication systems, is one of the highly sought after features. It needs improvement in the way that it handles various SSL enabled sites.