Software Advice Logo
Home
Firewall Software

AWS WAF

AWS WAF

RATING:

4.5

(4)
Visit Website
Overview
Reviews

About AWS WAF

AWS WAF is a firewall solution that helps businesses streamline processes related to fraud prevention, bot control, web traffic filtering, managed rules creation, and more from within a unified platform. It allows team members to block and rate-limit pervasive bots, scanners, crawl downtime, and other common bots from consuming excess resources, causing downtimes, skewing metrics, and more. AWS WAF enables employees to generate real-time metrics and set custom alarms to receive details of raw requests, such as URIs, IP addresses, referrers, and geo-locations.

AWS WAF Pricing

Please contact Amazon Web Services for pricing details.

Free trial: 

Not Available

Free version: 

Not Available

AWS WAF requests graph
Slide 1 of 3

AWS WAF Reviews

Overall Rating

4.5

Ratings Breakdown

Secondary Ratings

Ease-of-use

4

Customer Support

5

Value for money

4

Functionality

4.5

Most Helpful Reviews for AWS WAF

4 Reviews

Rafael

Design, 2-10 employees

Used daily for less than 2 years

Review Source: Capterra
This review was submitted organically. No incentive was offered

OVERALL RATING:

5

EASE OF USE

3

VALUE FOR MONEY

4

CUSTOMER SUPPORT

5

FUNCTIONALITY

5

Reviewed March 2022

Once you get past that the learning curve is unmatched.

Stop using third party tools. Being able to use all the other AWS tools, IP filtering, Shield and MAP.

PROS

The leap from other platforms has been slow but the speed with all the AWS tools is unmatched. Once you move from other services (Google and Azure) the environment is much better and robust. And stop using third party tools as everything is integrated within the AWS environment.

CONS

The learning curve is complicated. And for more detailed projects I need a system administrator, because it is difficult. But of course the investment is well worth it.

Reason for choosing AWS WAF

Having everything integrated in the same AWS environment. Scalability for larger projects AND the price.

Deep

Information Technology and Services, 10,000+ employees

Used daily for less than 2 years

Review Source: Capterra
This review was submitted organically. No incentive was offered

OVERALL RATING:

4

EASE OF USE

4

VALUE FOR MONEY

4

CUSTOMER SUPPORT

5

FUNCTIONALITY

4

Reviewed December 2023

AWS WAF: The Defender Our Web Apps Deserve

Its been super easy to create and manage all the security rules for all of my Web Applications in a single place using AWS WAF

PROS

The best about AWS WAF is its pre-built defenses. This WAF acts as a shield for all my web apps and it filters out all malicious traffic and protects against common web attacks for example SQL injection, XSS, or bot attacks. It provides a variety of managed rule groups, including OWASP Top 10, Common Rules, and Bot Control which are super useful. Not only these pre-defined rules , I can create my custom rules to address specific needs for my web applications. And another very useful feature is I can easily integrate WAF with other AWS resources such as AWS Cloudfront, ALB ,Amazon API gateway etc .

CONS

The pay as you go model for AWS WAF is little bit complex for a newbie as the price depends on many factors such as number of Web access control lists created,traffic volume,configuration etc. So you must have prior knowledge to deal with AWS WAF. Except this there is nothing much to dislike about AWS WAF.

Reasons for switching to AWS WAF

Our Contract ended with Akamai and We've found AWS WAF is bit less costly than Akamai

User Profile

Gianluigi

Verified reviewer

Information Technology and Services, 11-50 employees

Used weekly for less than 6 months

Review Source: Capterra
This review was submitted organically. No incentive was offered

OVERALL RATING:

4

EASE OF USE

3

VALUE FOR MONEY

3

FUNCTIONALITY

3

Reviewed May 2022

Quite good basic Web Application Firewall in free version

We adopt WAF in front of our single ingress point, our ALB, through which all our requests pass. We deploy a lot of different web apps, including Wordpress sites, API custom apps and so on. With AWF we can setup some default rules which covers typical attacks and we sometime set custom rules based on specific application requirements. When rules become many, you have to pay to add more.

PROS

Preset rules covers a lot of typical web app critical security issue, like SQL Injection and Wodpress attack. Monitoring is quite good. Set actions in the event of an attack is very simple to setup.

CONS

You have a budget in "points" to spent for free. Using preset rules or set your own rules consumes "points" so you can set only a certain number of rules for free. Using advanced features requires a "pro" version which is very very expensive for us.

Reason for choosing AWS WAF

We choose WAF because is really integrated with other AWS services and all our infrastructure is based on AWS.

Anmol

Computer & Network Security, 201-500 employees

Used daily for more than 2 years

Review Source: Capterra
This reviewer was invited by us to submit an honest review and offered a nominal incentive as a thank you.

OVERALL RATING:

5

EASE OF USE

5

VALUE FOR MONEY

4

CUSTOMER SUPPORT

5

FUNCTIONALITY

5

Reviewed February 2023

AWS waf

PROS

Easy to setup and create a new ruleease of use of IP sets and regex pattern sets in which we can block IPs and domains

CONS

I am using AWS WAF for 2 years and It is easy to use setup.The dashboard is clear and gives an idea of the rules