Try our new research platform with insights from 80,000+ expert users

NGINX App Protect vs The Fastly Next-Gen WAF (powered by Signal Sciences) comparison

F5 and Fastly are both solutions in the Web Application Firewall (WAF) category. F5 is ranked #15 with an average rating of 8.1, while Fastly is ranked #25 with an average rating of 8.0. F5 holds a 2.2% mindshare in WAF, compared to Fastly’s 1.3% mindshare. Additionally, 96% of F5 users are willing to recommend the solution, compared to 60% of Fastly users who would recommend it.
Sponsored
Cloudflare Web Application ...
Read 26 Cloudflare Web Application Firewall reviews
  • 4,425 Views
  • 4,425 Comparison Views
95% willing to recommend
NGINX App Protect
Read 27 NGINX App Protect reviews
  • 2,546 Views
  • 1,808 Comparison Views
96% willing to recommend
The Fastly Next-Gen WAF (po...
Read 4 The Fastly Next-Gen WAF (powered by Signal Sciences) reviews
  • 1,030 Views
  • 906 Comparison Views
60% willing to recommend
 

Comparison Buyer's Guide

Download the report
Executive SummaryUpdated on Jan 1, 2025

Fastly Next-Gen WAF and NGINX App Protect are competitors in the web application firewall space, each having its distinct advantages. Fastly stands out with ease of use and customer support, while NGINX is preferred for its robust feature set, enhancing its appeal for comprehensive security requirements.

Features: Fastly Next-Gen WAF offers real-time visibility, versatile deployment options across cloud, on-premise, and hybrid environments, and excellent integration with DevOps tools. NGINX App Protect provides advanced threat detection and mitigation, robust API security features, and seamless integration with the NGINX ecosystem, making it beneficial for existing NGINX users.

Ease of Deployment and Customer Service: Fastly Next-Gen WAF receives praise for its straightforward deployment process and responsive support team, suitable for various platforms. NGINX App Protect provides seamless deployment for NGINX setups but may require more configuration for new users.

Pricing and ROI: Fastly Next-Gen WAF is noted for being cost-effective and offering a quick return on investment due to scalability and application protection efficiency. NGINX App Protect, although seen as more expensive, offers extensive security features that justify the higher cost for long-term needs. Fastly is preferred by budget-conscious buyers, while NGINX appeals to those seeking comprehensive security.

DOWNLOAD THE COMPLETE REPORT
To learn more, read our detailed NGINX App Protect vs. The Fastly Next-Gen WAF (powered by Signal Sciences) Report (Updated: March 2026).
Buyer's Guide
NGINX App Protect vs. The Fastly Next-Gen WAF (powered by Signal Sciences)
March 2026
Download the complete report
Helped 884,976 peers since 2012

Review summaries and opinions

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Categories and Ranking

Cloudflare Web Application ...
Sponsored
Ranking in Web Application Firewall (WAF)
7th
Average Rating
8.6
Reviews Sentiment
7.4
Number of Reviews
26
Ranking in other categories
No ranking in other categories
NGINX App Protect
Ranking in Web Application Firewall (WAF)
15th
Average Rating
8.2
Reviews Sentiment
6.4
Number of Reviews
27
Ranking in other categories
Container Security (27th), API Security (7th)
The Fastly Next-Gen WAF (po...
Ranking in Web Application Firewall (WAF)
25th
Average Rating
7.6
Reviews Sentiment
4.8
Number of Reviews
4
Ranking in other categories
No ranking in other categories
 

Mindshare comparison

As of March 2026, in the Web Application Firewall (WAF) category, the mindshare of Cloudflare Web Application Firewall is 5.4%, down from 6.9% compared to the previous year. The mindshare of NGINX App Protect is 2.2%, up from 1.7% compared to the previous year. The mindshare of The Fastly Next-Gen WAF (powered by Signal Sciences) is 1.3%, up from 0.8% compared to the previous year. It is calculated based on PeerSpot user engagement data.
Web Application Firewall (WAF) Mindshare Distribution
ProductMindshare (%)
Cloudflare Web Application Firewall5.4%
NGINX App Protect2.2%
The Fastly Next-Gen WAF (powered by Signal Sciences)1.3%
Other91.1%
Web Application Firewall (WAF)
 

Featured Reviews

DB
Dean Barisic
CTO at PlayNirvana
Advanced security reporting has protected high-traffic betting platforms from constant attacks
I don't see room for improvement to Cloudflare Web Application Firewall. One thing I don't know much about because we have a dedicated IT team for that, and I'm not involved with Cloudflare much anymore. But if I were to compare them to F5, I would like to see more features that F5 offers. F5 has an option to bring the whole infrastructure, the whole WAF and all their packages, Bot Management, and everything else on your infrastructure. You need to install certain services from their side, and then you can choose if you would like requests to hit your servers immediately or if requests need to be proxied through F5 backbone. That would be a nice addition because we have 90% of the traffic as legit traffic coming from whitelisted servers. If it comes from whitelisted servers, I don't need to go every request through the backbone; I could easily just IP whitelist everything. Then I could maybe have Bot Management on my infrastructure that drastically reduces the price of Cloudflare. I would like to see Push CDN more improved in the next release of Cloudflare Web Application Firewall. And maybe something similar to Pushpin that Fastly has, which is an option where you can push messages that then can be scaled globally over the network. From our perspective, if we have a listener that listens for stock updates, I would just need to have one processor that pushes those updates to the Cloudflare API, and then Cloudflare would broadcast that message to all listeners. Cloudflare will check the order of the message, and if you, as a customer, are not connected or have some kind of network issue, when you reconnect, you will receive the latest state and missing updates.
Read full review
Valerio Guaglianone - PeerSpot reviewer
Valerio Guaglianone
Dev Ops Engineer at adesso AG
Long-term web protection has supported reliable traffic management but needs a simpler interface
NGINX App Protect is a good product. I have used both versions from F5 -also the free version- (I mean the NGINX/NGINX One/App Protect free trial period), and I think it is a good product. It's stable, affordable, and easy to manage. NGINX App Protect is a comprehensive security solution that combines advanced WAF, DoS protection, API security, and DevSecOps automation in a lightweight, scalable package ideal for modern cloud-native architectures. The adaptive machine learning capabilities are truly commendable, as the solution can establish traffic baselines and detect anomalies in real time. It automatically adjusts security policies, minimizing the need for manual intervention and reducing false positives. Additionally, it supports scalable deployment across diverse environments, including on-premises, cloud, Kubernetes, and containers, offering both flexibility and scalability I have experience with the web server, F5 load balancer, and similar products provided by Ergon, for eg. the web application firewall and the Microgateway for K8S. I'm also familiar with F5 BIG-IP products.
Read full review
reviewer2161107 - PeerSpot reviewer
reviewer2161107
Staff Engineer at a retailer with 1,001-5,000 employees
Room for improvement with user interface while competitive pricing impresses
It is managed through Infrastructure as Code, so all configurations can be managed in the code itself, which is beneficial. Because it uses rules, it is easy to set up, and we have many different sites where the configurations are straightforward. Though the UI is not very interactive, which is a downside, we can manage many things. The UI is not very intuitive and could be better. However, we manage all the configurations through code, which is easy to maintain. It has extensive anomaly detection capabilities, so the traffic is classified into several categories where thresholds can be defined and customized based on false positives and false negatives. This is advantageous because you do not need to tweak it very often. Once you set it up, an audit once a quarter would suffice. Because The Fastly Next-Gen WAF (powered by Signal Sciences) is API-driven, we have integrations with the CI/CD pipeline through GitHub Actions, making it easy to integrate.
Read full review

Quotes from Members

We asked business professionals to review the solutions they use. Here are some excerpts of what they said:
 

Pros

"It protects web applications efficiently."
"The integration of Cloudflare with Cloud Suite is its most valuable feature."
"It is a SaaS solution unlike much of the competition."
"Cloudflare has positively impacted my organization by making it easier for me to handle and set up DNS for multiple clients; I can easily go in and access their accounts, make changes they need, and it's a one-stop shop."
"Someone with a basic understanding of networking and security will be able to implement the firewall's basic features within 15 minutes."
"The solution protects our application, which runs on the HTTP protocol, from DDoS attacks."
"It's pretty convenient and pretty easy to set up and run. And then kind of for static content, it also offers caching."
"This is a good product; it's reliable and scales well."
More Cloudflare Web Application Firewall pros
"There's a cache, or it works like a proxy, so it can speed up applications."
"The most valuable feature of NGINX App Protect is its open source."
"This solution provides perfect protection for the published services against all application attacks."
"NGINX App Protect's best features are auto-learning, which creates a profile of applications that are deployed, bot protection, and force protection, which lets you configure your brute force policy and alert for and prevent brute force attacks."
"NGINX App Protect's best features are auto-learning, which creates a profile of applications that are deployed, bot protection, and force protection, which lets you configure your brute force policy and alert for and prevent brute force attacks."
"NGINX App Protect has positively impacted my organization by adding an additional layer of security on top of my infrastructure layer, which I consider quite helpful."
"The most valuable feature of NGINX App Protect is its flexibility."
"I would recommend this solution to others because it performs well."
More NGINX App Protect pros
"The product's most valuable feature is its ability to set up the rules easily."
"Fastly (Signal Sciences) integrates and tags the intermittent traffic based on patterns. It generates signals and provides them in a dashboard where we can view them and decide whether to allow or deny traffic. It's a more advanced and easy-to-navigate dashboard."
"Because The Fastly Next-Gen WAF (powered by Signal Sciences) is API-driven, we have integrations with the CI/CD pipeline through GitHub Actions, making it easy to integrate."
"When configuring a web application firewall using Signal Sciences, we configure a rule whereby no one except a few people can access the application."
 

Cons

"There could be an option to duplicate the cluster to maintain the consistency of rules."
"Cloudflare Web Application Firewall should improve visibility for a customer."
"Their documentation could be better. They don't have documentation that explains everything well. They have documentation for everything you're looking for, but they lack a single piece of documentation to tie everything together. As a new user or beginner, it took us a little bit of time to figure out how to put all these things in place."
"Support can be challenging at times."
"Its stability could be better."
"The reporting could be more granular."
"It would be ideal if the solution offered better log integration and more integration with different platforms."
"The product can improve by having more multitenancy capability, which is currently not available."
More Cloudflare Web Application Firewall cons
"It would be better if it were easier to implement and if there was more information from F5 regarding hardware requirements and specifications to deploy the service, to avoid disruptions after implementation."
"NGINX App Protect would be improved with integration with Shape and F5 WAF, which would make it easy for users to manage all their web application security with a single solution."
"I think NGINX App Protect could be improved by having it come out of the box with NGINX."
"The dashboard could provide a more comprehensive view of the status of the connections."
"The support from NGINX App Protect is too expensive."
"The product's user interface is an area with shortcomings as it can be quite confusing for users, making it an area where improvements are required."
"Areas for improvement would be if NGINX could scan for vulnerabilities and learn and update the signatures of DoS attacks."
"NGINX App Protect could improve security."
More NGINX App Protect cons
"The UI is not very intuitive and could be better."
"Fastly don't support caching for China users. That's the only feature lacking compared to Akamai."
"The areas that could be improved in Signal Sciences include the effectiveness of rules, as many didn't function optimally and required custom rule-writing to address bypasses for WAF."
"Even if we create some custom rules, Signal Sciences cannot capture some of the malicious traffic."
 

Pricing and Cost Advice

"It starts at $20 and can easily go up to $200 monthly"
"What's my experience with pricing, setup cost, and licensing? I believe the pricing is not the best, but it's reasonable and acceptable. We also use the McAfee system in parallel. In terms of pricing, its okay - not great, but not bad either. It falls in the middle, which is acceptable. In terms of support licensing, last time, we were searching for a solution, and we considered products from resellers rather than directly from the cloud provider. However, the pricing we encountered was exceptionally high. As a result, we are inclined to select support from the reseller."
"The solution is expensive."
"The pricing model is very straightforward compared to the competition. You just pay per month for the product and usage."
"Cloudflare Web Application Firewall is more affordable than other solutions."
"The annual licensing fee is $10,000 USD."
"It is not too pricey."
"Cloudflare offers different types of subscriptions for businesses, enterprises, and personal users, and the pricing is negotiable."
More Cloudflare Web Application Firewall pricing and cost advice
"NGINX is not expensive."
"The price of NGINX App Protect is approximately $3,000 annually. All of our licenses are observed by a managed service partner."
"The product's price is high."
"NGINX App Protect is expensive."
"The pricing is reasonable because NGINX operates on an instance basis."
"Our licensing costs are about $40,000 a year."
"The licensing fees for this solution are pretty expensive for what it does, but there is no alternative."
"There is a license needed to use NGINX App Protect."
More NGINX App Protect pricing and cost advice
"The pricing is 50% less than Akamai."
"Signal Sciences is pretty cheap compared to other solutions."
"The product has an affordable cost."
report
See which vendors are best for you
Use our free recommendation engine to learn which Web Application Firewall (WAF) solutions are best for your needs.
See recommendations
884,976 professionals have used our research since 2012.
 

Top Industries

By visitors reading reviews
Computer Software Company
11%
Manufacturing Company
9%
Financial Services Firm
8%
Comms Service Provider
7%
Financial Services Firm
13%
Computer Software Company
11%
Comms Service Provider
10%
Manufacturing Company
8%
Manufacturing Company
13%
Retailer
11%
Financial Services Firm
9%
Computer Software Company
6%
 

Company Size

By reviewers
Large Enterprise
Midsize Enterprise
Small Business
By reviewers
Company SizeCount
Small Business16
Midsize Enterprise6
Large Enterprise6
By reviewers
Company SizeCount
Small Business9
Midsize Enterprise6
Large Enterprise12
No data available
 

Questions from the Community

What is your experience regarding pricing and costs for Cloudflare Web Application Firewall?
The price of Cloudflare Web Application Firewall is reasonable.
See all answers
What needs improvement with Cloudflare Web Application Firewall?
I don't see room for improvement to Cloudflare Web Application Firewall. One thing I don't know much about because we...
See all answers
What is your primary use case for Cloudflare Web Application Firewall?
We are using Cloudflare Web Application Firewall's advanced reporting and analytics tools with their Zero Trust, so e...
See all answers
What is your experience regarding pricing and costs for NGINX App Protect?
I will not be able to answer about my experience with pricing, setup cost, and licensing for NGINX App Protect, as so...
See all answers
What needs improvement with NGINX App Protect?
I think NGINX App Protect could be improved by having it come out of the box with NGINX.
See all answers
What is your primary use case for NGINX App Protect?
My main use case for NGINX App Protect is primarily in our infrastructure layer with Kubernetes, as I am using it to ...
See all answers
What is your experience regarding pricing and costs for Signal Sciences?
The pricing is very competitive compared to other providers. The pricing is definitely a factor in our decision-makin...
See all answers
What needs improvement with Signal Sciences?
We do use it, but the UI can be improved as we mostly work through the CI/CD. It provides support, but sometimes it i...
See all answers
What is your primary use case for Signal Sciences?
The CDN is for caching and The Fastly Next-Gen WAF (powered by Signal Sciences) is for protecting the servers from ma...
See all answers
 

Comparisons

Fortinet FortiWeb vs Cloudflare Web Application Firewall Logo
Fortinet FortiWeb vs Cloudflare Web Application Firewall
Compared 8% of the time
Check Point CloudGuard WAF vs Cloudflare Web Application Firewall Logo
Check Point CloudGuard WAF vs Cloudflare Web Application Firewall
Compared 7% of the time
Imperva Application Security Platform vs Cloudflare Web Application Firewall Logo
Imperva Application Security Platform vs Cloudflare Web Application Firewall
Compared 6% of the time
Azure Web Application Firewall vs Cloudflare Web Application Firewall Logo
Azure Web Application Firewall vs Cloudflare Web Application Firewall
Compared 5% of the time
F5 Advanced WAF vs Cloudflare Web Application Firewall Logo
F5 Advanced WAF vs Cloudflare Web Application Firewall
Compared 5% of the time
More Cloudflare Web Application Firewall Competitors
Fortinet FortiWeb vs NGINX App Protect Logo
Fortinet FortiWeb vs NGINX App Protect
Compared 9% of the time
Imperva Application Security Platform vs NGINX App Protect Logo
Imperva Application Security Platform vs NGINX App Protect
Compared 7% of the time
AWS WAF vs NGINX App Protect Logo
AWS WAF vs NGINX App Protect
Compared 6% of the time
Haltdos Enterprise WAF vs NGINX App Protect Logo
Haltdos Enterprise WAF vs NGINX App Protect
Compared 6% of the time
Azure Front Door vs NGINX App Protect Logo
Azure Front Door vs NGINX App Protect
Compared 5% of the time
More NGINX App Protect Competitors
Sqreen vs The Fastly Next-Gen WAF (powered by Signal Sciences) Logo
Sqreen vs The Fastly Next-Gen WAF (powered by Signal Sciences)
Compared 15% of the time
Imperva Application Security Platform vs The Fastly Next-Gen WAF (powered by Signal Sciences) Logo
Imperva Application Security Platform vs The Fastly Next-Gen WAF (powered by Signal Sciences)
Compared 12% of the time
AWS WAF vs The Fastly Next-Gen WAF (powered by Signal Sciences) Logo
AWS WAF vs The Fastly Next-Gen WAF (powered by Signal Sciences)
Compared 12% of the time
Azure Web Application Firewall vs The Fastly Next-Gen WAF (powered by Signal Sciences) Logo
Azure Web Application Firewall vs The Fastly Next-Gen WAF (powered by Signal Sciences)
Compared 9% of the time
Barracuda Web Application Firewall vs The Fastly Next-Gen WAF (powered by Signal Sciences) Logo
Barracuda Web Application Firewall vs The Fastly Next-Gen WAF (powered by Signal Sciences)
Compared 4% of the time
More The Fastly Next-Gen WAF (powered by Signal Sciences) Competitors
 

Product Reports

Buyer's Guide
Cloudflare Web Application Firewall
March 2026
Cloudflare Web Application Firewall reportDownload Cloudflare Web Application Firewall product report
Buyer's Guide
NGINX App Protect
March 2026
NGINX App Protect reportDownload NGINX App Protect product report
Buyer's Guide
The Fastly Next-Gen WAF (powered by Signal Sciences)
February 2026
The Fastly Next-Gen WAF (powered by Signal Sciences) reportDownload The Fastly Next-Gen WAF (powered by Signal Sciences) product report
 

Also Known As

Cloudflare WAF
NGINX WAF, NGINX Web Application Firewall
Signal Sciences Next-Gen WAF, Signal Sciences RASP
 

Overview

Cloudflare Web Application Firewall's intuitive dashboard enables users to build powerful rules through easy clicks and also provides Terraform integration. Every request to the WAF is inspected against the rule engine and the threat intelligence curated from protecting over 27 Million websites. Suspicious requests can be blocked, challenged or logged as per the needs of the user while legitimate requests are routed to the destination, agnostic of whether it lives on-premise or in the cloud. Analytics and Cloudflare Logs enable visibility into actionable metrics for the user.

Cloudflare

NGINX App Protect application security solution combines the efficacy of advanced F5 web application firewall (WAF) technology with the agility and performance of NGINX Plus. The solution runs natively on NGINX Plus and addresses some of the most difficult challenges facing modern DevOps environments:

  • Integrating security controls directly into the development automation pipeline
  • Applying and managing security for modern and distributed application environments such as containers and microservices
  • Providing the right level of security controls without impacting release and go-to-market velocity
  • Complying with security and regulatory requirements

NGINX App Protect offers:

  • Expanded security beyond basic signatures to ensure adequate controls
  • F5 app‑security technology for efficacy superior to ModSecurity and other WAFs
  • Confidently run in “blocking” mode in production with proven F5 expertise
  • High‑confidence signatures for extremely low false positives
  • Increases visibility, integrating with third‑party analytics solutions
  • Integrates security and WAF natively into the CI/CD pipeline
  • Deploys as a lightweight software package that is agnostic of underlying infrastructure
  • Facilitates declarative policies for “security as code” and integration with DevOps tools
  • Decreases developer burden and provides feedback loop for quick security remediation
  • Accelerates time to market and reduces costs with DevSecOps‑automated security
F5

The Fastly Next-Gen WAF (powered by Signal Sciences) provides web application and API protection, RASP, rate limiting, bot protection and DDoS purpose built to eliminate the challenges of legacy WAF.

Fastly
 

Sample Customers

crunchbase, udacity, marketo, okcupid, zendesk
Information Not Available
Chef, Adobe, Datadog, Etsy, GrubHub, Vimeo, SendGrid, Under Armour, Duo, AppNexus
Buyer's Guide
NGINX App Protect vs. The Fastly Next-Gen WAF (powered by Signal Sciences)
March 2026
Free Report: NGINX App Protect vs. The Fastly Next-Gen WAF (powered by Signal Sciences)
Find out what your peers are saying about NGINX App Protect vs. The Fastly Next-Gen WAF (powered by Signal Sciences) and other solutions. Updated: March 2026.
DOWNLOAD NOW
884,976 professionals have used our research since 2012.
See our NGINX App Protect vs. The Fastly Next-Gen WAF (powered by Signal Sciences) report.
See our list of best Web Application Firewall (WAF) vendors.

We monitor all Web Application Firewall (WAF) reviews to prevent fraudulent reviews and keep review quality high. We do not post reviews by company employees or direct competitors. We validate each review for authenticity via cross-reference with LinkedIn, and personal follow-up with the reviewer when necessary.