Sold by: Radware
Radware Cloud WAF is a fully managed Cloud Application Protection Service providing the industry's most comprehensive web application security solution. It integrates Radware's cloud-delivered WAF technology, API protection, Bot management, application layer DDoS protection, client-side protection, analytics, threat detection and security feeds in a single portal.
4.6
Overview
Radware Cloud WAF is a fully managed Cloud Application Protection Service providing the industry's most comprehensive web application security solution. The service integrates Radware's Cloud WAF, API Protection, Bot management, client-side and application layer DDoS protection in a single portal that provides security analytics, threat detection and real-time security feeds to protect applications against hacking, malicious bots, API exposure, Web DDoS attacks, supply chain attacks and other vulnerabilities. Radware's combination of negative and positive security models provides a complete level of protection against OWASP Top 10 threats and zero-day attacks. API Discovery and Protection - End-to-end API solution from Discovery to protection at a click of a button. Radware auto API discovery maps all of your applications documented and undocumented third-party APIs, automatically generates Open API schema files, generates tailored security policies to detect and block API-focused attacks in real time and enforce protection across all your APIs. Radware's advanced API protection eliminates your documenting and protecting APIs overheads and keeps your organization protected across the board. Bot Management - Integrated Bot Manager provides comprehensive mitigation options, such as Blockchain-based Crypto challenges to counter attacks. It ensures precise bot management for web, mobile, and API traffic by employing behavioral modeling, collective bot intelligence, and fingerprinting. This defense guards against all OWASP 21 automated threats, including account takeover, credential stuffing, DDoS, fraud, and web scraping, fortifying online operations. Web DDoS Protection - Industry leading application-layer L7 protection against DDoS attacks, based on Radware's unique machine-learning-based behavioral detection that distinguishes between legitimate and malicious traffic, and automatically generates granular signatures in real-time to protect against zero-day attacks. Best-in-class security against a wide variety of threats, including HTTP Floods, HTTP bombs, low-and-slow assaults, Brute Force attacks, and disruptive web DDoS Tsunamis. Client-side Protection - Easily block requests to suspicious third-party services in your supply chain and adhere to data security compliance standards. Protect against client-side attacks coming from third party JS services - Formjacking, Skimming,Magecart, automatically and continuously discover all third-party services in your supply chain with detailed activity tracking, as well as get alerts & threat level assessment according to multiple indicators, including script source and destination domain. Pricing We have 3 different pricing packages - Standard, Advanced and Complete. The Standard and Advanced packages come with some of the features while Complete provides full coverage.
Highlights
- Fully Managed Web Application Protection Service - 24x7 Fully managed security service by Radware's expert Emergency Response Team(ERT). Protect Against OWASP Vulnerabilities - Stay protected against 150+ known attack vectors, including the OWASP Top 10 Web Application Security Risks, Top 10 API Security Vulnerabilities, Top 21 Automated Threats To Web Applications, and Top 10 Client-side vulnerabilities
- Detect, Manage and Mitigate Bots - Detect and distinguish between good and bad bots to protect websites, mobile apps and APIs. Easily optimize and customize your bot management policies to provide a better user experience and drive more ROI from your application traffic. End-to-end API Protection - From discovery to enforcement at a click of a button, Radware combines behavioral analysis and policy automation to protect from increasingly sophisticated API assaults.
- Mitigate Application-Level DDoS Assaults - Radware's DDoS protection technologies provide the shortest time to detection and mitigation of most advanced and high volume HTTP-based DDoS assaults by utilizing patented behavioral analysis, machine learning-based engines. Protect Client-Side From Supply Chain Attacks - This solution offers advanced client side protection that ensures the protection of end users data when interacting with any third-party services in the application supply chain.
Details
Sold by
Categories
Delivery method
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/Mbps |
|---|---|---|
Cloud Application Protection Standard,10 Mbps,1 Application - Monthly | Cloud Application Protection Standard,10 Mbps,1 Application - Monthly | $638.00 |
Cloud Application Protection Standard,50 Mbps,1 Application - Monthly | Cloud Application Protection Standard,50 Mbps,1 Application - Monthly | $1,940.00 |
Cloud Application Protection Standard,100 Mbps,1 Application - Monthly | Cloud Application Protection Standard,100 Mbps,1 Application - Monthly | $3,069.00 |
Advanced_10 | Cloud Application Protection Advanced,10 Mbps,1 Application - Monthly | $1,276.00 |
Advanced_Addon | Cloud Application Protection Advanced,1 Application Add-On - Monthly | $127.00 |
Complete_10 | Cloud Application Protection Complete,10 Mbps,1 Application - Montly | $2,233.00 |
Complete_Addon | Cloud Application Protection Complete,1 Application Add-On - Monthly | $193.00 |
CDN_Add_on | Cloud Application Protection CDN Service Enablement - Monthly | $287.00 |
CDDOS_OnDemand | On-Demand Cloud DDoS Protection Service - Legitimate 10Mbps - Monthly | $2,750.00 |
CDDOS_AlwaysOn | Always-On Cloud DDoS Protection Service - Legitimate 10Mbps - Monthly | $4,950.00 |
Vendor refund policy
No refund offered
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
Online Support Service Portal -Appropriate for non-critical issues, such as general inquiries, requests for technical documentation/ information, schedule support during an upcoming maintenance window, view installed base and manage support cases.24x7, where Internet service is available
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Alteon VA supports the complex functionality requirements of Enterprise applications which go beyond basic availability and quality of experience features. These include: Layer 7 Rewrite, Application Level Traffic Steering, Caching, SSL Offload, compression, acceleration. WAF (AppWall), SecureUR L
Alteon VA supports the complex functionality requirements of Enterprise applications which go beyond basic availability and quality of experience features. These include: Layer 7 Rewrite, Application Level Traffic Steering, Caching, SSL Offload, compression, acceleration. WAF (AppWall), SecureUR L
Alteon VA supports the complex functionality requirements of Enterprise applications which go beyond basic availability and quality of experience features. These include:Layer 7 RewriteApplication Level Traffic SteeringCachingSSL OffloadingWAF (AppWall)
Alteon VA supports the complex functionality requirements of Enterprise applications which go beyond basic availability and quality of experience features. These include: Layer 7 Rewrite, Application Level Traffic Steering, Caching, SSL Offload, compression, acceleration. WAF (AppWall), SecureUR L
Customer reviews
Pere Camps
Web protection has improved and service now blocks attacks to keep public sites secure
Reviewed on Mar 26, 2026
Review provided by PeerSpot
What is our primary use case?
My main use case for Radware Cloud WAF Service is blocking the IPs of hackers, SQL injections, and others for protecting the domains of Gran Melia Resort.
What is most valuable?
In my experience, the best feature of Radware Cloud WAF Service is its strong protection for public-facing domains and web applications. Its ability to block common web attacks and the visibility it gives into suspicious traffic and threats improves the security posture of our online services without adding too much operational complexity.
Radware Cloud WAF Service has positively impacted our organization by giving us peace of mind with suspicious traffic, fewer web security concerns on public services, and more confidence in the protection of our applications. It has helped us maintain service availability more effectively during suspicious traffic situations.
What needs improvement?
Radware Cloud WAF Service could be improved with a simpler management interface, more detailed reporting, and easier policy tuning for day-to-day administration. The service is strong, but improving its usability, reporting clarity, and day-to-day policy management would make it even better. A more streamlined administrative experience would be very valuable.
For how long have I used the solution?
I have been working in my current field for three years.
What do I think about the stability of the solution?
Radware Cloud WAF Service has been very stable in our experience, and we have not had any problems with the service.
What do I think about the scalability of the solution?
Radware Cloud WAF Service has shown good scalability in our experience. It has been able to support our needs reliably as requirements grow without causing issues in daily operations.
How are customer service and support?
The customer support for Radware Cloud WAF Service has been very good. We are happy with the support provided and the overall responsiveness of the team.
Which solution did I use previously and why did I switch?
We did not use a different solution before Radware Cloud WAF Service.
How was the initial setup?
I would recommend clearly defining our protection needs and public-facing services from the start so the setup can be aligned with our environment. If security and reliable support are important for our organization, Radware Cloud WAF Service is a strong option to consider.
What about the implementation team?
Our only relationship with the vendor is as a customer.
What was our ROI?
I have seen a return on investment with Radware Cloud WAF Service mainly in terms of time saved, lower operational risk, and better protection of our public-facing services.
Which other solutions did I evaluate?
Before choosing Radware Cloud WAF Service, we also evaluated other well-known options such as Cloudflare , Akamai , and Imperva.
What other advice do I have?
Radware Cloud WAF Service is deployed in a public cloud environment. I would rate this review as a ten out of ten.
Btejedor Tejedor
Security has strengthened banking applications and provides clear insight into bot and API threats
Reviewed on Mar 25, 2026
Review provided by PeerSpot
What is our primary use case?
Radware Cloud WAF Service is used in my organization to protect critical services, including banking applications, all of which are protected as critical services with Radware Cloud WAF Service.
A specific example of how Radware Cloud WAF Service has protected one of these applications involves incidents where I detected different alerts related to bot attacks, and thanks to the tool, we were able to identify them and prevent those attacks from being effective.
Traffic control and filtering are very useful for protecting the applications, and I would like to add that these capabilities are important to our use case.
What is most valuable?
Radware Cloud WAF Service's best features are the simplified management, which is quite intuitive, and the reporting that provides us with relevant information.
The reporting allows us to obtain values and data on the amount of traffic entering the application, helping us determine parameters while considering a line of attacks that we might face. This reporting is important to present to a steering committee to justify the application's security.
I consider the Anti-Bot and API Protection modules to be extremely important, and by having these additional functionalities configured, we have been able to reinforce and strengthen our applications in a much better way.
Radware Cloud WAF Service has positively impacted my organization by providing peace of mind for the team and ensuring regulatory compliance. Radware Cloud WAF Service has been very useful in guaranteeing the integrity of the information and secure access to the applications, which are necessary in the banking field.
What needs improvement?
I chose a rating of nine and not another number because Radware Cloud WAF Service is a very intuitive tool with the necessary controls to guarantee the integrity of the information, but those improvement aspects keep me from giving it a perfect score.
For how long have I used the solution?
I have been using Radware Cloud WAF Service in my organization for three years.
What do I think about the stability of the solution?
Throughout the time we have used Radware Cloud WAF Service, it has been quite stable.
What do I think about the scalability of the solution?
Radware Cloud WAF Service's scalability has been good, as it has adapted quite well to my organization's growth.
How are customer service and support?
My experience with the technical support of Radware Cloud WAF Service has been positive, as the response has been quick.
When an incident occurs, a ticket is opened for Radware's technical support, and generally when it is urgent, it is done through a call. The response is usually immediate to create the case and from there carry out the corresponding review.
Which solution did I use previously and why did I switch?
I did not have the opportunity to manage another similar tool before using Radware Cloud WAF Service, as we have always had Radware Cloud WAF Service since I have been here.
How was the initial setup?
The technical side of the configuration has been simple, though I do not have the exact figure for costs.
What was our ROI?
I have seen a clear return on investment with Radware Cloud WAF Service in terms of saving time and resources because being a very solid tool, it does not require much attention, only during incidents.
What other advice do I have?
My advice to someone considering implementing Radware Cloud WAF Service in their organization is that it is a very good, robust tool, and they should take into consideration the support that I mentioned earlier. I would rate this solution nine out of ten.
Marc Rico Teja
Service has strengthened attack protection and now blocks ddos threats with clear dashboards
Reviewed on Mar 25, 2026
Review provided by PeerSpot
What is our primary use case?
The main use case for Radware Cloud WAF Service in my organization is blocking attacks. A specific example of a type of attack that I was able to block using Radware Cloud WAF Service is blocking DDoS attacks. I am referring to DDoS-type attacks.
What is most valuable?
Radware Cloud WAF Service detects and blocks this type of threat in my environment by blocking them and then showing them to me in interactive dashboards with the source IP addresses.
The dashboards work very well to understand the focus of the threat, the origin of the attacks, and to create interactive reports to explain in dashboards where each attack comes from and to block the sources.
The best features offered by Radware Cloud WAF Service are the dashboard and the ease of blocking attacks.
On a day-to-day basis, the most useful features of the dashboard make things easier for us because it blocks the attacks, preventing them from reaching the company's environments. In the dashboards, I get the IPs, the origin, a map showing where they are located, and the specific pages that are attacked.
Radware Cloud WAF Service positively impacts my organization as it saves us headaches when we have attacks since it blocks them. I have noticed a specific change in security, a reduction of incidents, and improvements in response times since I started using the tool, as problems have decreased with fewer attacks.
What needs improvement?
Radware Cloud WAF Service could be improved by making exporting dashboards easier.
For how long have I used the solution?
I have been working in the area of systems administration for five years.
What do I think about the stability of the solution?
I consider Radware Cloud WAF Service to be stable in my environment.
What do I think about the scalability of the solution?
I rate the scalability of Radware Cloud WAF Service as it adapts very well to growth or changes in my organization.
How are customer service and support?
My experience with Radware Cloud WAF Service customer support could be better.
Which solution did I use previously and why did I switch?
I did not use any other solution before implementing Radware Cloud WAF Service.
How was the initial setup?
Before choosing Radware Cloud WAF Service, I did not evaluate other options.
What was our ROI?
I have seen a return on investment since I started using Radware Cloud WAF Service with time savings.
That time savings translates into my day-to-day work or my team's processes by eliminating the need for us to block the sources; Radware Cloud WAF Service blocks them automatically.
What's my experience with pricing, setup cost, and licensing?
My experience with the pricing, implementation cost, and licenses of Radware Cloud WAF Service has been good. The only thing is that I would lower the price, but otherwise it's great.
What other advice do I have?
My advice to other companies that are considering using Radware Cloud WAF Service is that they should buy it because it makes your work life better. I give Radware Cloud WAF Service a rating of 9 out of 10.
AshishPatil2
Protection has strengthened sensitive domains and reduces daily web attacks efficiently
Reviewed on Mar 25, 2026
Review provided by PeerSpot
What is our primary use case?
My main use case for Radware Cloud WAF Service is to protect domains with the WAF services. I am mainly using Radware Cloud WAF Service to protect my web services, and it has helped me address SQL injection, DDoS, and every malware attack which we are protecting our domains.
What is most valuable?
The best features of Radware Cloud WAF Service are valuable for protecting our domains with day-to-day attacks, including fake URLs so that we can maintain our domains to best practice for the users.
Since using Radware Cloud WAF Service, when we onboard our domains in the WAF, it has become very easy to track down things for the domains, allowing us to protect against fake domain attacks and track with that false domain.
It reduces incidents and also saves real-time because our domains contain very sensitive data, which gives us a clear vision to protect that with the WAF.
What needs improvement?
Radware Cloud WAF Service must improve by providing clearer directions; it is not recommended for new users to have bulky features, but the WAF is doing very well as we receive prompt responses regarding alerts, and we can track easy logs findings.
For how long have I used the solution?
I have been using Radware Cloud WAF Service for the past four years.
What do I think about the stability of the solution?
In my experience, Radware Cloud WAF Service is stable with no downtime or reliability issues, and we receive notifications regarding any changes or downtime prior, which makes it easy to notify our users.
What do I think about the scalability of the solution?
Radware Cloud WAF Service can handle growth easily as our needs increase.
How are customer service and support?
The experience with customer support is very good because when I raise a case, I will receive prompt responses and continuous follow-ups regarding the tickets.
What was our ROI?
I do not know regarding money saved, but definitely, the time saving with the WAF is very useful because nowadays, saving time for employees and your organization is the best practice.
What's my experience with pricing, setup cost, and licensing?
Regarding pricing, if an organization wants to protect their domains with a clear and very good experience with WAF services, I do not think the price is an issue because for perfect security with the domains, you will get the best services for the pricing.
What other advice do I have?
I would advise others looking into using Radware Cloud WAF Service to go for this WAF because it is very helpful and very protective for the domain.
Lazaro Nascimento
Cloud security has protected our client websites and blocks injection and zero‑day attacks
Reviewed on Mar 19, 2026
Review provided by PeerSpot
What is our primary use case?
The main use case my organization has for Radware Cloud WAF Service is the protection of websites. A concrete example of how my organization uses Radware Cloud WAF Service to protect these websites is that the platform is protected by hardware against attacks such as SQL Injection.
What is most valuable?
Radware Cloud WAF Service is very good, and there are various features such as DDoS for blocking mass attacks. The best features offered by Radware Cloud WAF Service include that it is SaaS. The features I consider to be the best include a user-friendly interface, very good support, fast response times, and very advanced tools for blocking Zero-day attacks. The positive impact of Radware Cloud WAF Service on my organization is the defense of the websites of our clients, since hackers constantly attack the websites and Radware Cloud WAF Service protects our websites. Since using Radware Cloud WAF Service, we have experienced measurable benefits such as the blocking of SQL Injection, XSS, RFI, LFI, and various injection attacks.
What needs improvement?
An aspect that could be improved in Radware Cloud WAF Service is having more reports. I would prefer that part to be improved by having the data presented in charts and more visual dashboards in order to have a more accurate analysis of what is happening in real time.
For how long have I used the solution?
I have been using Radware Cloud WAF Service for two years.
What do I think about the stability of the solution?
I consider Radware Cloud WAF Service to be a stable solution.
What do I think about the scalability of the solution?
I have not needed to scale the initial service yet, as it still meets my needs.
How are customer service and support?
I would rate Radware's customer support for Radware Cloud WAF Service as very good. On a scale from one to ten, I would rate customer support a ten.
Which solution did I use previously and why did I switch?
We used other solutions before Radware Cloud WAF Service, and then we migrated to Radware.
Which other solutions did I evaluate?
Before choosing Radware Cloud WAF Service, we evaluated other options, considering it being SaaS in the cloud because of the ease of configuration and maintenance.
What other advice do I have?
I rate Radware Cloud WAF Service a ten overall. I give it a ten because I appreciate the platform, the support, the blocking capabilities of the tool, the features, the infrastructure, and the ease of use. I would advise other professionals considering using Radware Cloud WAF Service that it is very good, very fast, and very simple to understand and configure, although I do not have information about the price.