Try our new research platform with insights from 80,000+ expert users

HAProxy vs Ivanti Virtual Web Application Firewall comparison

Sponsored
 

Comparison Buyer's Guide

Executive Summary

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cloudflare Web Application ...
Sponsored
Ranking in Web Application Firewall (WAF)
7th
Average Rating
8.6
Reviews Sentiment
7.4
Number of Reviews
26
Ranking in other categories
No ranking in other categories
HAProxy
Ranking in Web Application Firewall (WAF)
14th
Average Rating
8.2
Reviews Sentiment
7.2
Number of Reviews
47
Ranking in other categories
Application Delivery Controllers (ADC) (3rd), Distributed Denial-of-Service (DDoS) Protection (6th), Bot Management (7th), Service Mesh (2nd)
Ivanti Virtual Web Applicat...
Ranking in Web Application Firewall (WAF)
44th
Average Rating
9.0
Reviews Sentiment
6.2
Number of Reviews
0
Ranking in other categories
Application Delivery Controllers (ADC) (16th)
 

Featured Reviews

DB
CTO at PlayNirvana
Advanced security reporting has protected high-traffic betting platforms from constant attacks
I don't see room for improvement to Cloudflare Web Application Firewall. One thing I don't know much about because we have a dedicated IT team for that, and I'm not involved with Cloudflare much anymore. But if I were to compare them to F5, I would like to see more features that F5 offers. F5 has an option to bring the whole infrastructure, the whole WAF and all their packages, Bot Management, and everything else on your infrastructure. You need to install certain services from their side, and then you can choose if you would like requests to hit your servers immediately or if requests need to be proxied through F5 backbone. That would be a nice addition because we have 90% of the traffic as legit traffic coming from whitelisted servers. If it comes from whitelisted servers, I don't need to go every request through the backbone; I could easily just IP whitelist everything. Then I could maybe have Bot Management on my infrastructure that drastically reduces the price of Cloudflare. I would like to see Push CDN more improved in the next release of Cloudflare Web Application Firewall. And maybe something similar to Pushpin that Fastly has, which is an option where you can push messages that then can be scaled globally over the network. From our perspective, if we have a listener that listens for stock updates, I would just need to have one processor that pushes those updates to the Cloudflare API, and then Cloudflare would broadcast that message to all listeners. Cloudflare will check the order of the message, and if you, as a customer, are not connected or have some kind of network issue, when you reconnect, you will receive the latest state and missing updates.
Shrinivas Devarkonda - PeerSpot reviewer
Head of DevOps at TripFactory
Handles high traffic efficiently and simplifies complex routing with rule-based logic
I think HAProxy is good as it stands now, but I believe there could be improvements. gRPC has recently been implemented, which is great, along with TLS 1.2 and 1.3 support, and HTTP 2.0 is also available. However, I'm unsure about the benchmark of those HTTP 2.0 requests on HAProxy. If there were any other protocol with better performance than HTTP 2.0, or perhaps mTLS and other similar features, including that in HAProxy would be really great. For improvements, I think that during setup and configuration, the steps provided are neat and clear. Anyone can easily install and configure it. There are many kernel tuning parameters also available, which is great. For specific improvement, in terms of logging, I think printing the full object of the request may help, or if there's a way to reference two requests, it would be beneficial to find a complete session history from a logged-in customer, as it would help analyze customer and user analytics.
reviewer890211 - PeerSpot reviewer
Consultant at a consultancy with 1-10 employees
Good feature set and is simple to deploy
In terms of what needs improvement, the price could be lowered. We've tried to deploy more of them but our purchasing department has said that they're way too expensive and they would prefer to use something else. We sort of stopped deploying them because of that. There are additional costs to the standard licensing. There are bandwidth prices. The feature set is quite good. We've been told to stop using them because of the price. If they can do something to address that I believe it would be better. On the latest version they've got a community edition, which is quite a good bandwidth, but in essence, it's to address the entry-level price. When you get to 10 gig bandwidth, it's way too expensive.

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"The rate limiting features and customizations in terms of URL match and applying policies are valuable to me."
"The product has improved our security posture by blocking bad actors."
"The solution protects our application, which runs on the HTTP protocol, from DDoS attacks."
"The security features are valuable. The particular feature we use is called OWASP."
"We like that there's load balancing, firewall capabilities, DDoS protection, et cetera, all covered by Cloudflare."
"Does a good job preventing web application attacks."
"The Cloudflare Web Application Firewall's most valuable feature is its ease of configuration."
"Some of the most valuable features of Cloudflare Web Application Firewall include its DNS zone setup and the zero trust policy."
"Having the right load balancing solution – which is what HAProxy is – and protection in place gives organizations peace of mind."
"I have found HAProxy very helpful in replicating production environment architecture in a development and testing environment."
"We have reduced a lot of servers, replacing them with one or two HAProxy servers which deliver better performance, accuracy, and an almost 100% success rate with requests coming from customers or other sources, and there are no loopholes, disconnects, or gaps in the entire data flow."
"HAProxy has positively impacted my organization by making it easier for me to manage configurations; I put configuration files on the Ceph storage shared across the whole cluster, allowing me to write my configuration, change it easily in one place, and reload it."
"We were able to use HAProxy for round robin with our databases, or for a centralized TCP connection in one host."
"The feature that I have found the most valuable is that it works for my use case of application load balancing. I'm using it for PeerSense, and it's easy enough for PeerSense."
"It is stable. Period. Will not fail unless you do something wrong."
"It solves a problem for me where I can build files, not based on the health of the check, but rather the speed of the check."
"The most valuable aspect of this solution is that it is simple to deploy. The deployment took us ten minutes."
 

Cons

"The platform's control features related to real-time authentication and response time need improvement."
"Their documentation could be better. They don't have documentation that explains everything well. They have documentation for everything you're looking for, but they lack a single piece of documentation to tie everything together. As a new user or beginner, it took us a little bit of time to figure out how to put all these things in place."
"We don't even use Cloudflare Bot Management because it's too expensive; you need to pay per request, and it's much cheaper to get one or two additional machines."
"A key challenge arises when dealing with numerous integrations with HVAC systems. Depending on the specifics, there might be some configuration mismatches, which necessitate specific support."
"The solution's learning curve can still be further reduced"
"The notification part could be improved. It's very much connected to Web Application Firewall, rate-limiting, and DDoS protection."
"Support can be challenging at times."
"The blocked logs are difficult to read at times."
"HAProxy could improve by making the dashboards easier to use, and better reports and administration tickets."
"HAProxy could do with some good combination integrations."
"Sometimes it's challenging to get through the log, and you need a log to understand what is going on. It isn't easy to map the logging with the documentation, and every time I read the log, I have to pull out the documentation to understand what I'm reading."
"A significant area for improvement in HAProxy is its tenancy model; managing multiple environments can be challenging, especially with mergers, acquisitions, or domain changes."
"Maybe HAProxy could be more modular."
"The visibility could be improved."
"HAProxy is very weak in the logging and monitoring part and requires improvement."
"The solution's dashboards and reports could be improved."
"In terms of what needs improvement, the price could be lowered. We've tried to deploy more of them but our purchasing department has said that they're way too expensive and they would prefer to use something else."
 

Pricing and Cost Advice

"It is not too pricey."
"The solution's pricing option needs to be more transparent for enterprise clients."
"The solution is expensive."
"We pay $210 per month for CloudFlare WAF."
"The annual licensing fee is $10,000 USD."
"Cloudflare Web Application Firewall is more affordable than other solutions."
"Cloudflare offers different types of subscriptions for businesses, enterprises, and personal users, and the pricing is negotiable."
"It starts at $20 and can easily go up to $200 monthly"
"Test/lab virtual machines can be installed without a licence. They can't be used for performance testing but otherwise behave like production nodes."
"Very good value for the money. One of the simplest licensing schemes in this category of products."
"The licensing fee for the solution is $690 per unit annually."
"We are using HAProxy as an open-source."
"If you don't have expertise then go with the licensed version. Otherwise, open-source is the best solution."
"HAProxy is free software. There are optional paid products (support/appliances)."
"I use the open-source version of the product. I don't have experience with the licensed version of the solution."
"When it comes to pricing HAProxy is free."
Information not available
report
Use our free recommendation engine to learn which Application Delivery Controllers (ADC) solutions are best for your needs.
884,873 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
11%
Manufacturing Company
9%
Financial Services Firm
8%
Comms Service Provider
8%
Computer Software Company
15%
Financial Services Firm
10%
Comms Service Provider
10%
Manufacturing Company
9%
No data available
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business16
Midsize Enterprise6
Large Enterprise6
By reviewers
Company SizeCount
Small Business17
Midsize Enterprise15
Large Enterprise16
No data available
 

Questions from the Community

What needs improvement with Cloudflare Web Application Firewall?
I don't see room for improvement to Cloudflare Web Application Firewall. One thing I don't know much about because we...
What is your primary use case for Cloudflare Web Application Firewall?
We are using Cloudflare Web Application Firewall's advanced reporting and analytics tools with their Zero Trust, so e...
Do you recommend HAProxy?
I do recommend HAProxy for more simple applications or for companies with a low budget, since HAProxy is a free, open...
What do you like most about HAProxy?
The solution is effective in managing our traffic.
What is your experience regarding pricing and costs for HAProxy?
Since we used the open-source version, we were not concerned about pricing, setup cost, or licensing.
Ask a question
Earn 20 points
 

Also Known As

Cloudflare WAF
HAProxy Community Edition, HAProxy Enterprise Edition, HAPEE
Pulse vWAF, Pulse Virtual Traffic Manager
 

Overview

 

Sample Customers

crunchbase, udacity, marketo, okcupid, zendesk
Booking.com, GitHub, Reddit, StackOverflow, Tumblr, Vimeo, Yelp
Gilt Groupe
Find out what your peers are saying about F5, NetScaler, HAProxy and others in Application Delivery Controllers (ADC). Updated: March 2026.
884,873 professionals have used our research since 2012.