Radware DDoS Reviews

Opting for a solution like Radware DefensePro is a strategic move for our telecom company, especially considering the critical nature of our subscriber self-care portal and the potential impact on the organization's image and the country as a whole. 

Radware DefensePro is renowned for its advanced DDoS mitigation capabilities and has significantly enhanced the security posture of our infrastructure.  

As a public sector unit, the stakes are high, and DefensePro's ability to handle sophisticated attacks provides an added layer of confidence. Its scalability ensures that our telecom infrastructure can adapt to changing traffic patterns and evolving threat landscapes.

DefensePro offers a multi-layered defense mechanism, combining behavioral analysis, signature detection, and real-time threat intelligence to identify and neutralize DDoS attacks promptly. Its adaptive nature allows it to evolve with emerging threats, ensuring that our self-care portal is shielded against the latest attack vectors.

The solution's granular traffic inspection capabilities enable it to differentiate between legitimate and malicious traffic, preventing service disruptions caused by volumetric, protocol, or application-layer DDoS attacks. This not only safeguards our portal but also contributes to maintaining the promised 100% uptime.

The solution has many valuable features, including a regular signature update. Radware is providing regular signature updates for the DefensePro solution, thus our organization is better equipped to handle any new threat vectors.

The solution's reporting and analytics features are quite useful. It offers valuable insights into ongoing and past attacks, aiding in post-incident analysis and continuous improvement of our cybersecurity strategy. This proactive approach aligns with the need to not only mitigate threats but also to learn from and refine our security posture over time.

They need to provide more granular control over security policies, allowing organizations to tailor configurations based on their specific needs and risk profiles. There is a restriction on the number of policies that can be defined.  That count may be increased further to create more specific policies

They should integrate automated incident response capabilities to streamline the mitigation process and reduce response times during attacks.

It would be ideal if they could expand protocol support to cover emerging communication standards and ensure comprehensive protection against diverse attack vectors.

I've been using the solution for the last 11 years.

It is stable.  

Scalability is an issue. It can be made more scalable by considering the growing DDoS attacks and web services.

We've always received support when needed.

Positive

I did not use a different solution.

It was a straightforward setup. We had no hiccups.

Implementation was through the vendor team. I would rate them nine on a scale of one to ten where one is the worst and ten is best.

It is a good option for those who are looking for on-premises protection against DDoS attacks.

It helps us a lot in terms of attacks, volumetric attacks, DDoS attacks, etc. It is very useful in that it also anticipates potential attackers. In addition, it helps us to automate, so we do not always have to be aware of alerts. It automatically blocks the types of attacks that occur on a daily basis.

It gives us peace of mind with its automation because DefensePro already has attacks in its knowledge base. It stops attacks and anticipates other attacks.

DefensePro is very important because the availability of our services is crucial. With the prevalence of denial-of-service attacks, volumetric attacks, it's vital for us to count on DefensePro to prevent them. It ensures we have a robust response to the many threats and attacks that arise on a daily basis. We have the availability of services that our clients need when they need them. That is the greatest benefit for us.

Since we started using DefensePro, we have not had problems with the availability of our service. It has helped mitigate the attacks that have been attempted. So far, we have not had an incident associated with denial of service issues.

Also, in the investigations we have done into verifying reports, we have seen that they are generally real denial-of-service attacks. The false-positive rate is not high. It has reduced false positives by more than 90 percent.

We realized these benefits almost immediately. As soon as we installed DefensePro, it began to deflect all the attacks that were occurring. We started seeing alerts, especially for DDoS attacks.

The platform for administration and review of attacks that are occurring or have occurred is very dynamic and easy to use and administer.

As a service provider, we use the SecOps dashboard feature. That's where we check the time of attacks to see if an attack is happening at the moment or if it has already happened, and we gather information such as how long the attack took. It is very dynamic and helps us know when an attack occurred, how long it lasted, and what type of attack it was. With this functionality, we have the information we need at hand. We know what is happening in real time and what has happened during the day. We review the dashboard for control issues, and we generate and maintain controls with antivirus attack themes.

For monitoring and reporting metrics, the dashboards are very useful. We generate controls for DDoS attacks monthly, and it makes that very easy. In addition, it helps us understand what happened. It's so easy to see what is happening, both in real time and at the time the reports or alerts are generated.

In our organization, the SecOps dashboards are managed by technical staff only. Other people in the company do not have access to it. But if they were shown to a person who is more administrative or managerial, they would understand them because they are easy to understand. I have shown certain screenshots to senior staff, and they were easily able to comprehend them. With this tool, you can express yourself in front of a person who is not involved in IT.

Its ability to detect attacks in real time is very effective. It features comprehensive automation because the signatures update themselves automatically. Plus, it can detect Zero-day attacks and possible attacks that are not yet known. That has also been of great value to us.

Right now, we have DefensePro 6. The only complaint I have is that SSL inspection, when activated, consumes a lot of resources on the machine. We are currently reviewing a possible change to DefensePro X, the new version, which has a separate module with its processors. It only consumes the performance of that card, not the rest of the machine. But SSL inspection resource consumption in DefensePro is the only thing I would say can be improved in our current version.

I have been using Radware DefensePro for six years.

It is very stable. We have not had any type of inconvenience or anomaly. It always works on top, without hardware problems. In all this time, it has been active, and we have not had any issues.

The scalability is very good. We can always add another team in our other data center. We plan to renew DefensePro and increase our use of it to solve the SSL traffic.

Their technical support is excellent. Radware always responds with what is necessary.

Positive

We started our DDoS protection with DefensePro.

The initial deployment of Radware's solution was simple. Radware typically sends its team to assist with the setup. Our implementation strategy involved a day for configuration, another for installation, and a third day dedicated to monitoring the solution. This three-day strategy is our go-to when implementing any Radware platform. It took us three days to get everything up and running.

As for staffing during the deployment, one person from Radware was present, along with two members of our IT team.

There is no maintenance required from us.

The return on investment for us is knowing that our services are available. That means we do not suffer financial losses or losses to our reputation. Those are great benefits.

We generally sign on for three-year contracts, which generates good discounts for us.

To someone who wants to go with the cheapest solution, I would say that "cheap" often ends up being expensive. With Radware, we have the support of a company that specializes in these issues and provides efficient implementation and support. My advice would be to not hesitate to pick a company or a product that has excellent capabilities, like Radware, and has automatic threat detection and mitigation.

You have the full support of Radware for everything related to implementation and support. They are always very attentive to their clients and to all the updates. They have great support. Don't think it over so much; just get it.

DefensePro is a very dynamic platform, very easy to manage, and very intuitive. It has always kept our services up, mitigating all the denial-of-service attacks we've had. We have not had any incidents. It is an excellent product.

Foreign Language:(Spanish)

¿Cómo ha ayudado a mi organización?

Nos ayuda mucho en cuanto a ataques, ataques volumétricos, ataques DDoS, etc. Es muy útil porque también se anticipa a posibles atacantes. Además, nos ayuda a automatizar, por lo que no siempre tenemos que estar pendientes de las alertas. Bloquea automáticamente los tipos de ataques que ocurren a diario.

Nos da tranquilidad con su automatización porque DefensePro ya tiene ataques en su base de conocimiento. Detiene los ataques y anticipa otros ataques.

DefensePro es muy importante porque la disponibilidad de nuestros servicios es crucial. Con la prevalencia de los ataques de denegación de servicio y los ataques volumétricos, es vital para nosotros contar con DefensePro para prevenirlos. Garantiza que tengamos una respuesta sólida a las numerosas amenazas y ataques que surgen a diario. Tenemos la disponibilidad de los servicios que nuestros clientes necesitan cuando los necesitan. Ese es el mayor beneficio para nosotros.

Desde que empezamos a utilizar DefensePro, no hemos tenido problemas con la disponibilidad de nuestro servicio. Ha ayudado a mitigar los ataques futuros. Hasta el momento, no hemos tenido ningún incidente asociado con problemas de denegación de servicio.

Además, en las investigaciones que hemos realizado para verificar informes, hemos visto que generalmente se trata de ataques reales de denegación de servicio. La tasa de falsos positivos no es alta. Ha reducido los falsos positivos en más del 90 por ciento.

Nos dimos cuenta de estos beneficios casi de inmediato. Tan pronto como instalamos DefensePro, comenzó a desviar todos los ataques que se producían. Empezamos a ver alertas, especialmente de ataques DDoS.

¿Qué es lo más valioso?

La plataforma de administración y revisión de ataques que están ocurriendo o han ocurrido es muy dinámica y fácil de usar y administrar.

Como proveedor de servicios, utilizamos la función de los dashboards de SecOps. Ahí es donde verificamos la hora de los ataques para ver si se está produciendo un ataque en ese momento o si ya ocurrió, y recopilamos información como cuánto tiempo duró el ataque. Es muy dinámico y nos ayuda a saber cuándo ocurrió un ataque, cuánto duró y qué tipo de ataque fue. Con esta funcionalidad tenemos a mano la información que necesitamos. Sabemos lo que está pasando en tiempo real y lo que ha pasado durante el día. Revisamos el dashboard para detectar problemas de control y generamos y mantenemos controles con temas de ataque antivirus.

Para monitorear y reportar métricas, los dashboards son muy útiles. Generamos controles para ataques DDoS mensualmente y eso lo hace muy fácil. Además, nos ayuda a entender lo que pasó. Es muy fácil ver lo que está pasando, tanto en tiempo real como en el momento en que se generan los informes o alertas.

En nuestra organización, los paneles de SecOps son administrados únicamente por personal técnico. Otras personas de la empresa no tienen acceso a él. Pero si se los mostraran a una persona más administrativa o directiva, los entendería porque son fáciles de entender. Le mostré ciertas capturas de pantalla al personal superior y pudieron comprenderlas fácilmente. Con esta herramienta podrás expresarte frente a una persona que no esté involucrada en TI.

Su capacidad para detectar ataques en tiempo real es muy efectiva. Cuenta con una automatización integral porque las firmas se actualizan automáticamente. Además, puede detectar ataques de día cero y posibles ataques que aún no se conocen. Eso también ha sido de gran valor para nosotros.

¿Qué necesita mejorar?

En este momento tenemos DefensePro 6. La única queja que tengo es que la inspección SSL, cuando se activa, consume muchos recursos del equipo. Actualmente estamos revisando un posible cambio en DefensePro X, la nueva versión, que tiene un módulo separado con sus procesadores. Sólo consume el rendimiento de esa tarjeta, no el del resto del equipo. Pero el consumo de recursos de inspección SSL en DefensePro es lo único que diría que se puede mejorar en nuestra versión actual.

¿Durante cuánto tiempo he usado la solución?

Llevo seis años usando Radware DefensePro.

¿Qué pienso sobre la estabilidad de la solución?

Es muy estable. No hemos tenido ningún tipo de inconveniente o anomalía. Siempre arriba, sin problemas de hardware. En todo este tiempo ha estado activo y no hemos tenido ningún problema.

¿Qué pienso sobre la escalabilidad de la solución?

La escalabilidad es muy buena. Siempre podemos agregar otro equipo en nuestro otro centro de datos. Planeamos renovar DefensePro y aumentar nuestro uso para resolver el tráfico SSL.

¿Cómo es el servicio y soporte al cliente?

Su soporte técnico es excelente. Radware siempre responde con lo necesario.

¿Cómo calificaría el servicio y soporte al cliente?

Positivo

¿Qué solución utilicé anteriormente y por qué cambié?

Comenzamos nuestra protección DDoS con DefensePro.

¿Cómo fue la configuración inicial?

La implementación inicial de la solución de Radware fue sencilla. Radware normalmente envía a su equipo para ayudar con la configuración. Nuestra estrategia de implementación implicó un día de configuración, otro de instalación y un tercer día dedicado al seguimiento de la solución. Esta estrategia de tres días es nuestra opción al implementar cualquier plataforma Radware. Nos llevó tres días ponerlo todo en funcionamiento.

En cuanto a la dotación de personal durante la implementación, estuvo presente una persona de Radware, junto con dos miembros de nuestro equipo de TI.

No hay mantenimiento requerido de nosotros.

¿Cuál fue nuestro retorno de la inversión?

El retorno de la inversión para nosotros es saber que nuestros servicios están disponibles. Eso significa que no sufrimos pérdidas financieras ni pérdidas en nuestra reputación. Esos son grandes beneficios.

¿Cuál es mi experiencia con los precios, el costo de instalación y las licencias?

Generalmente firmamos contratos de tres años, lo que nos genera buenos descuentos.

¿Qué otro consejo tengo?

A alguien que quiera optar por la solución más barata, le diría que lo "barato" a menudo acaba saliendo caro. Con Radware contamos con el respaldo de una empresa que se especializa en estos temas y brinda implementación y soporte eficiente. Mi consejo sería no dudar en elegir una empresa o un producto que tenga capacidades excelentes, como Radware, y que tenga detección y mitigación automática de amenazas.

Cuentas con el soporte total de Radware para todo lo relacionado con implementación y soporte. Siempre están muy atentos a sus clientes y a todas las actualizaciones. Tienen un gran soporte técnico. No lo pienses tanto y elige Radware.

DefensePro es una plataforma muy dinámica, muy fácil de gestionar y muy intuitiva. Siempre ha mantenido nuestros servicios en funcionamiento, mitigando todos los ataques de denegación de servicio que hemos tenido. No hemos tenido ningún incidente. Es un excelente producto.

We use the product to protect our centers from DDoS attacks. We deploy the tool across multiple offices across the Middle and Far East. 

The solution provides us with data security and better protection against DDoS attacks. It also gives monthly analysis reports, which are beneficial.

DDoS Protection Service provides excellent defense in the cloud, and the implementation and migration are very straightforward. 

The solution provides good real-time protection against threats. 

We use the Cloud DDoS Management System, and it provides good visibility into incidents. We can centrally manage incidents according to our defense flows.  

The Management System is very easy to use. 

The Cloud DDoS Management System provides many cloud-based tools for analyzing and managing attacks on our organization, including alerts and reporting. There's a dashboard that allows us to monitor alerts, and we can configure reports to receive them daily and monthly.  

The Cloud DDoS Management System mitigates attacks depending on their priority, but it takes less than 30 minutes to mitigate high-priority attacks, and the response begins immediately.   

The product's mean time to detect an incident is ten to fifteen seconds. 

There is room for improvement in the pricing; the product could be more affordable. 

Improvements to the support and protection are always welcome, though they are in a good place. 

We've been using the solution for ten years. 

The product is stable. 

The solution is scalable. We currently have 1,000 end users. 

The customer support is good; I rate it eight out of ten.

Positive

The initial deployment was straightforward; it took around a month, and 30-40 staff were involved in the setup. The solution requires some maintenance. 

The product gives us an ROI of around 20%. 

Radware Cloud DDoS is very expensive. 

I rate the solution ten out of ten. 

To someone looking for a DDoS Protection product but who wants to go with the cheapest option on the market, it depends on your support and how capable you are of integrating the tool with your customers.

Our company provide services to government organizations, banks, and local police. Approximately two weeks ago, our customer experienced an attack with a volume of about 20 gigabits. Despite the attack, the website remained available and working perfectly.

We use these solutions to provide services to our customers. Customers purchase DDoS protection solutions. We have DefenseFlow Pro installed at our facility. The customers' traffic passes through this DefenseFlow, allowing us to provide enterprise services to our clients.

We are very satisfied with the solution. Recently, our company has been facing difficulties due to attacks originating from the Russian Federation. DefenseFlow has proven to be a highly effective solution in protecting our customers.

Signature protection is enabled because it uses profiles stored in the device. When configuring protection for a customer, one can select from various profiles. Migration protection is the most crucial, and we offer subscriptions with Radware.

Another effective feature of Radware DefenseFlow is the behavior mechanism, implemented for protection. This mechanism monitors the customer's traffic and typically requires one day to learn the customer's traffic patterns, establishing baselines. If significant deviations from these baselines occur, the behavior protection is triggered to safeguard the customer's traffic.

Its documentation is not 100% clear, making it the weakest aspect of Radware. We have encountered some difficulties in understanding how to configure it correctly.

I have been using Radware DefenseFlow for three years.

The product’s stability is quite good.

Radware bugs can pass through a certain amount of traffic. They say this is clean or legitimate traffic. The box itself can test through 40 megabits per second of plain traffic, but you need to buy a license. The license can accommodate 10 gigabits per second. It's the same box, but you just buy a license to accommodate the traffic. Scalability is sort of purchasing a new license.

We, a team of four people were using this solution. There are some alerts configured on the box. We'll be monitoring the health of the device to see what situation.

We had some issues. When we opened a ticket, they responded immediately.

Positive

We're using a different solution from Juniper.

We have router, which connects to other routers functioning as SDR routers that have BGP sessions with our upstream providers. We installed DefenseFlow on the device and configured it according to our customers' needs. This setup allows traffic to pass through the DefenseFlow and then proceed to the customer's location.

Sometimes it blocks traffic, and it's challenging to identify the reason why it's blocking the traffic. We can clearly see that traffic is being dropped because when we configure the whitelist to bypass anything inside the box, the traffic begins to flow, indicating that the traffic was previously dropped. However, there are no traces of this in the logs. This doesn't happen very often, but there have been a couple of instances where we've encountered this situation. It took us few days to properly configure it.

The solution brings customers.

The solution is easy to use with extensive troubleshooting. Also, it is easy to integrate, simply connect to the switch and configure ethernet ports until you are ready to go.

Overall, I rate the solution a ten out of ten.

The solution is stable. 

It has a high level of scalability. It is reliable. 

The initial setup is easy.

Technical support is satisfactory. 

The features are good. 

We would like to have seven-layer functionality.

I've been using the solution for four years. 

The solution is stable and reliable. There are no bugs or glitches, and it doesn't crash or freeze. 

The solution can scale well, and it is easy to expand. 

We have about 1,000 people on the solution. 

Technical support has been good in general. We are satisfied with their level of assistance. 

Positive

It offers an easy initial setup. It's not overly complex. You shouldn't have an issue with the implementation process. 

I'd rate it 4.5 out of five in terms of ease of implementation. 

The licensing cost is about $50,000.

We are Radware partners. 

I'd advise potential new users to go with a hybrid mode and move to the cloud. That should be the approach.

I'd rate the solution nine out of ten. 

We primarily use the solution for web application firewalls and as hardware.

I can only distinguish Radware DefensePro from Netscout AED, which doesn't have such a protection network, behavior analysis, intrusion prevention, and maybe anti-bot modules. This product is more advanced than Netscout AED. However, I haven't the knowledge of how it looks in comparison, for example, to F5 or Fortinet appliances or others, as I didn't do RFI and RFP. The most important thing for me right now in the Radware portfolio, is that Radware went to the cloud and has a flexible model based on virtual machines that can be delivered in our data center model, which could be delivered via the public cloud. That’s the big advantage of Radware, from my perspective.

Its functionality is very good.

The behavioral analysis is of very good quality.

I started from scratch, from medium customers to bigger customers, and then maybe smaller ones. I would like to have more granular steps according to protected bandwidth, so the granularity should be better. For example, one gigabit of protected bandwidth, two gigabits, three gigabits, and so on. Right now, it's two, four, and six, something like that. It depends on the appliance, of course, as Defense Code 6 is the smaller one and next is 10 or 12. However, in general, the granularity could be better.

I’ve used the solution for five years.

The solution is quite stable. There are no bugs or glitches. It doesn’t crash or freeze.

The product is scalable.

We have 12 to 15 people on the solution.

I don’t directly deal with technical support. That is the responsibility of others.

I'm not a technical guy. From my perspective, the initial setup is not easy. However, it's not hard. Someone who would like to have a good security policy should have enough knowledge to configure it using the security policy. The knowledge is essential since it's not possible to implement a security policy without knowledge about the traffic, including what kind of traffic, what kind of application, what kind of parameters, et cetera. It's not a hammer. It's a security appliance. For our people, it's not as hard since we use it. We know how to use it. It's maybe more important to integrate it with additional systems like a CM.

The solution offers good quality for the price.

I prefer low investment expenditures. I prefer paying less at the beginning of the project. After the customer base starts growing, I can pay more.

This solution is moderately priced. I would rate it three out of five.

To deliver to our current customers, we had to buy something new. However, in the future, we would like to check what kind of opportunities are on the market.

We are in the middle of buying the newest DefensePro. We switched to the new technology as the old one is the end of life and end of support. That's why we have to buy a new DefensePro.

It's in our internal infrastructure, so it's in our network. It's not a data center, for example, Amazon, Azure, or Google Cloud.

With this model, it's all one. We would like to extend it in the near future, maybe to be more flexible. I am in the middle of the project and in the middle of how to distinguish protection against DDoS attacks and have Layer 7 and web application firewalls. In our offering, we combined these two areas into one service. One part is DDoS protection against 7th layer DDoS attacks, and the second is web application firewalls. Right now, I would like to work on how to distinguish to maybe separate it. I don't know what it will look like right now.

I’d rate the solution overall an eight out of ten.

We use Radware to control close to the most sensitive areas of our network and as protection against significant external attacks.

The important features include automated protection and defense against many attacks, it's important that our networks are protected in the Radware cloud.

As price increases based on the volume of net traffic, it can get expensive. 

The NetFlow security could be improved too.

More customization options would be a welcome addition. 

We have been using the solution for three months.

The stability is good at the moment.

The solution has scalability. 

Technical support is good, I would rate it a five out of five. 

Positive

Initial setup is easy.

We implemented Radware deployment through a reseller. 

We use about 10 engineers for the deployment and maintenance of this product.

It's very important for us to have well-analyzed and protected traffic within our network, that's why we use this solution.

I would rate this solution an eight out of ten.

I'm a security engineer.

In terms of the environment that I work in, the SSL, DNS, and HTTP are all valuable features. This is a very technologically simple and effective solution. 

There are no issues on the hardware front, but on the management front, the APSolute Vision needs to be more granular so that it's possible to get real-time information. If I want to check on TCP traffic or any kind of traffic flowing between a source and a destination, I should be able to access it in real-time. For now, I have to check four or five options, then go for a TCPDUMP, download it, and then open it. It takes too long and is a complex process. There should be an option in the management server or on the GUI, to simplify things for users. It should just be a matter of putting in the source and the destination IP, to see the latency for that particular destination and what's going on.

Because Radware does not have its own control plane software, it can only integrate with specific products. They should aim to integrate with third parties such as Genie, Nokia, and Arbor DMS. It's currently very limited.

I've been using this solution for three years. 

The solution is stable.

Scalability is not an issue because the product comes with a scalable license. 

The customer support wasn't great but it was reasonable. 

The initial setup was very straightforward. Maintenance requirements depend on the size of the environment. If it's deployed in an ISP environment then it requires one or two administrators. If it's a single appliance for an enterprise environment, then one person is enough for maintenance.

I rate this solution seven out of 10.