Find out what your peers are saying about Cloudflare, Amazon Web Services (AWS), Microsoft and others in CDN.
With AWS WAF, it is easier for us to block unwanted malicious DDoS attacks and threats from coming into our web application.
I would rate the technical support by Amazon AWS as satisfactory, as they generally address issues promptly.
They reach out when you send them a ticket, and within 24 hours or less, someone is able to get back to you to solve your problem.
Resolving issues can take time because the support personnel may lack product expertise, leading to delays.
AWS WAF does scale in the sense that it is fully managed and has automatic scaling.
If Amazon CloudFront is present, it will decrease latency; if it is not, then latency would be slightly greater, but it would still work.
Since it protects web applications from common attacks such as SQL injection and XSS, it is very stable.
We faced issues with AWS WAF when writing the custom rules.
In terms of reliability, I would rate AWS WAF about six out of ten due to the need for improved signature sets.
The pricing for Amazon CloudFront is quite expensive; I would rate it six if we use all edges.
I believe they may lack certain functionalities.
Compared to firewalls, WAFs generally provide limited stateful analysis capabilities.
If there are scripts in the requests, we should be able to filter those requests to see if there are any scripts running from them.
Features like bot protection or DDoS mitigation, available with other WAF vendors, do not come natively with AWS WAF.
The licensing cost for AWS WAF is just pay-as-you-go; it is a service-based model.
Due to our status as an AWS shop, AWS WAF is cost-effective for us, and we benefit from discounts due to our extensive use of AWS services.
It drastically reduces latency, which is very useful for web performance and user experience.
This scalability has positively reflected in my customer's web performance and user experience, allowing for better loading times.
The biggest benefit of AWS WAF for us is to filter malicious requests, so we can protect our environment and application from malicious actors.
It has also helped to improve the posture of our application, prevent all DDoS attacks, and unnecessary traffic and SQL injection that is reducing the performance of our application.
I switched from other vendors to prioritize AWS WAF for better control within our infrastructure.
| Product | Market Share (%) |
|---|---|
| Amazon CloudFront | 6.9% |
| Cloudflare | 19.1% |
| Akamai | 15.0% |
| Other | 59.0% |
| Product | Market Share (%) |
|---|---|
| AWS WAF | 5.8% |
| Fortinet FortiWeb | 8.1% |
| F5 Advanced WAF | 7.8% |
| Other | 78.3% |
| Company Size | Count |
|---|---|
| Small Business | 21 |
| Midsize Enterprise | 4 |
| Large Enterprise | 16 |
| Company Size | Count |
|---|---|
| Small Business | 22 |
| Midsize Enterprise | 12 |
| Large Enterprise | 26 |
Amazon CloudFront is a global content delivery network (CDN) service that accelerates delivery of your websites, APIs, video content or other web assets. It integrates with other Amazon Web Services products to give developers and businesses an easy way to accelerate content to end users with no minimum usage commitments. Amazon CloudFront can be used to deliver your entire website, including dynamic, static, streaming, and interactive content using a global network of edge locations. Requests for your content are automatically routed to the nearest edge location, so content is delivered with the best possible performance. Amazon CloudFront is optimized to work with other Amazon Web Services, like Amazon Simple Storage Service (Amazon S3), Amazon Elastic Compute Cloud (Amazon EC2), Amazon Elastic Load Balancing, and Amazon Route 53. Amazon CloudFront also works seamlessly with any non-AWS origin server, which stores the original, definitive versions of your files. Like other Amazon Web Services products, there are no long-term contracts or minimum monthly usage commitments for using Amazon CloudFront – you pay only for as much or as little content as you actually deliver through the content delivery service.
AWS Web Application Firewall (WAF) is a firewall security system that monitors incoming and outgoing traffic for applications and websites based on your pre-defined web security rules. AWS WAF defends applications and websites from common Web attacks that could otherwise damage application performance and availability and compromise security.
You can create rules in AWS WAF that can include blocking specific HTTP headers, IP addresses, and URI strings. These rules prevent common web exploits, such as SQL injection or cross-site scripting. Once defined, new rules are deployed within seconds, and can easily be tracked so you can monitor their effectiveness via real-time insights. These saved metrics include URIs, IP addresses, and geo locations for each request.
AWS WAF Features
Some of the solution's top features include:
Reviews from Real Users
AWS WAF stands out among its competitors for a number of reasons. Two major ones are its user-friendly interface and its integration capabilities.
Kavin K., a security analyst at M2P Fintech, writes, “I believe the most impressive features are integration and ease of use. The best part of AWS WAF is the cloud-native WAF integration. There aren't any hidden deployments or hidden infrastructure which we have to maintain to have AWS WAF. AWS maintains everything; all we have to do is click the button, and WAF will be activated. Any packet coming through the internet will be filtered through.”
We monitor all CDN reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.
