Sold by: Radware
Radware Cloud WAF is a fully managed Cloud Application Protection Service providing the industry's most comprehensive web application security solution. It integrates Radware's cloud-delivered WAF technology, API protection, Bot management, application layer DDoS protection, client-side protection, analytics, threat detection and security feeds in a single portal.
4.5
Overview
Radware Cloud WAF is a fully managed Cloud Application Protection Service providing the industry's most comprehensive web application security solution. The service integrates Radware's Cloud WAF, API Protection, Bot management, client-side and application layer DDoS protection in a single portal that provides security analytics, threat detection and real-time security feeds to protect applications against hacking, malicious bots, API exposure, Web DDoS attacks, supply chain attacks and other vulnerabilities. Radware's combination of negative and positive security models provides a complete level of protection against OWASP Top 10 threats and zero-day attacks. API Discovery and Protection - End-to-end API solution from Discovery to protection at a click of a button. Radware auto API discovery maps all of your applications documented and undocumented third-party APIs, automatically generates Open API schema files, generates tailored security policies to detect and block API-focused attacks in real time and enforce protection across all your APIs. Radware's advanced API protection eliminates your documenting and protecting APIs overheads and keeps your organization protected across the board. Bot Management - Integrated Bot Manager provides comprehensive mitigation options, such as Blockchain-based Crypto challenges to counter attacks. It ensures precise bot management for web, mobile, and API traffic by employing behavioral modeling, collective bot intelligence, and fingerprinting. This defense guards against all OWASP 21 automated threats, including account takeover, credential stuffing, DDoS, fraud, and web scraping, fortifying online operations. Web DDoS Protection - Industry leading application-layer L7 protection against DDoS attacks, based on Radware's unique machine-learning-based behavioral detection that distinguishes between legitimate and malicious traffic, and automatically generates granular signatures in real-time to protect against zero-day attacks. Best-in-class security against a wide variety of threats, including HTTP Floods, HTTP bombs, low-and-slow assaults, Brute Force attacks, and disruptive web DDoS Tsunamis. Client-side Protection - Easily block requests to suspicious third-party services in your supply chain and adhere to data security compliance standards. Protect against client-side attacks coming from third party JS services - Formjacking, Skimming,Magecart, automatically and continuously discover all third-party services in your supply chain with detailed activity tracking, as well as get alerts & threat level assessment according to multiple indicators, including script source and destination domain. Pricing We have 3 different pricing packages - Standard, Advanced and Complete. The Standard and Advanced packages come with some of the features while Complete provides full coverage.
Highlights
- Fully Managed Web Application Protection Service - 24x7 Fully managed security service by Radware's expert Emergency Response Team(ERT). Protect Against OWASP Vulnerabilities - Stay protected against 150+ known attack vectors, including the OWASP Top 10 Web Application Security Risks, Top 10 API Security Vulnerabilities, Top 21 Automated Threats To Web Applications, and Top 10 Client-side vulnerabilities
- Detect, Manage and Mitigate Bots - Detect and distinguish between good and bad bots to protect websites, mobile apps and APIs. Easily optimize and customize your bot management policies to provide a better user experience and drive more ROI from your application traffic. End-to-end API Protection - From discovery to enforcement at a click of a button, Radware combines behavioral analysis and policy automation to protect from increasingly sophisticated API assaults.
- Mitigate Application-Level DDoS Assaults - Radware's DDoS protection technologies provide the shortest time to detection and mitigation of most advanced and high volume HTTP-based DDoS assaults by utilizing patented behavioral analysis, machine learning-based engines. Protect Client-Side From Supply Chain Attacks - This solution offers advanced client side protection that ensures the protection of end users data when interacting with any third-party services in the application supply chain.
Details
Sold by
Categories
Delivery method
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Description | Cost/Mbps |
|---|---|---|
Cloud Application Protection Standard,10 Mbps,1 Application - Monthly | Cloud Application Protection Standard,10 Mbps,1 Application - Monthly | $638.00 |
Cloud Application Protection Standard,50 Mbps,1 Application - Monthly | Cloud Application Protection Standard,50 Mbps,1 Application - Monthly | $1,940.00 |
Cloud Application Protection Standard,100 Mbps,1 Application - Monthly | Cloud Application Protection Standard,100 Mbps,1 Application - Monthly | $3,069.00 |
Advanced_10 | Cloud Application Protection Advanced,10 Mbps,1 Application - Monthly | $1,276.00 |
Advanced_Addon | Cloud Application Protection Advanced,1 Application Add-On - Monthly | $127.00 |
Complete_10 | Cloud Application Protection Complete,10 Mbps,1 Application - Montly | $2,233.00 |
Complete_Addon | Cloud Application Protection Complete,1 Application Add-On - Monthly | $193.00 |
CDN_Add_on | Cloud Application Protection CDN Service Enablement - Monthly | $287.00 |
CDDOS_OnDemand | On-Demand Cloud DDoS Protection Service - Legitimate 10Mbps - Monthly | $2,750.00 |
CDDOS_AlwaysOn | Always-On Cloud DDoS Protection Service - Legitimate 10Mbps - Monthly | $4,950.00 |
Vendor refund policy
No refund offered
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Software as a Service (SaaS)
SaaS delivers cloud-based software applications directly to customers over the internet. You can access these applications through a subscription model. You will pay recurring monthly usage fees through your AWS bill, while AWS handles deployment and infrastructure management, ensuring scalability, reliability, and seamless integration with other AWS services.
Resources
Vendor resources
Support
Vendor support
Online Support Service Portal -Appropriate for non-critical issues, such as general inquiries, requests for technical documentation/ information, schedule support during an upcoming maintenance window, view installed base and manage support cases.24x7, where Internet service is available
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
Alteon VA supports the complex functionality requirements of Enterprise applications which go beyond basic availability and quality of experience features. These include: Layer 7 Rewrite, Application Level Traffic Steering, Caching, SSL Offload, compression, acceleration. WAF (AppWall), SecureUR L
Alteon VA supports the complex functionality requirements of Enterprise applications which go beyond basic availability and quality of experience features. These include: Layer 7 Rewrite, Application Level Traffic Steering, Caching, SSL Offload, compression, acceleration. WAF (AppWall), SecureUR L
Alteon VA supports the complex functionality requirements of Enterprise applications which go beyond basic availability and quality of experience features. These include:Layer 7 RewriteApplication Level Traffic SteeringCachingSSL OffloadingWAF (AppWall)
Alteon VA supports the complex functionality requirements of Enterprise applications which go beyond basic availability and quality of experience features. These include: Layer 7 Rewrite, Application Level Traffic Steering, Caching, SSL Offload, compression, acceleration. WAF (AppWall), SecureUR L
Customer reviews
Armando Rodríguez
Security has improved and access to internet-facing applications is now proactively controlled
Reviewed on Apr 21, 2026
Review provided by PeerSpot
What is our primary use case?
My main use case for Radware Cloud WAF Service involves four domains; three of them are applications exposed to the internet and the fourth is an internal application for exclusive use through remote access.
I use the platform to protect those applications exposed to the internet by having the domains registered in Radware Cloud Service, and from there we can monitor unauthorized access or attempts to access the platform by users from locations where they should not be logging in, or any kind of traffic that is not what we normally have. It helps us, it prevents and then blocks those attempts that fall outside the parameters we have configured.
What is most valuable?
The best features offered by Radware Cloud WAF Service , in my opinion, are the real-time response to incidents which allows us to block and to take action before the damage occurs. It allows us to identify situations in a preventive manner and to take initial restrictive actions and then corrective ones.
I believe the preventive actions it takes based on the parameters of what it finds on the networks and in the databases of weaknesses and vulnerabilities are especially useful, as it applies them and helps us so that with any attempt that goes outside the parameters, we don't have any type of incident.
Radware Cloud WAF Service has positively impacted our organization because we feel safer, we feel that we have controlled access by unauthorized third parties, and we feel that our applications that face the internet, that are published, are more secure and that we can take preventive actions before any type of event occurs.
What needs improvement?
I think Radware Cloud WAF Service could be improved by having an always up-to-date database, having full identification of vulnerabilities and gaps in tools that keep emerging, and by actively and permanently involving all the analyses and predictions that can be done through artificial intelligence.
Regarding the necessary improvements, the platform is adequate as it is, and I don't have any specific function that I have missed or any technical aspect that could be further optimized.
For how long have I used the solution?
I have been using Radware Cloud WAF Service for two and a half years.
What do I think about the stability of the solution?
I consider Radware Cloud WAF Service to be stable in day-to-day use.
What do I think about the scalability of the solution?
I would rate the scalability of Radware Cloud WAF Service as adequate, and the platform adapts to the growth of my organization. I initially stated that scalability was inadequate, but I need to correct that statement as it is actually adequate. I have used it when we started with three domains and now we are on the fourth domain.
How are customer service and support?
The customer support of Radware Cloud WAF Service has been good, with very good response times and full compliance with SLAs.
Which solution did I use previously and why did I switch?
We did not have any other solution before implementing Radware Cloud WAF Service.
How was the initial setup?
My experience with pricing, implementation costs, and licensing is positive, as the costs were quite well adjusted, the cost-benefit ratio is very good. The implementation also had a very reasonable cost and the timelines were excellent, with no major delays or setbacks, and the results were seen almost immediately.
What about the implementation team?
I have seen a return on investment because there are time savings for personnel dedicated to doing tasks that they previously had to do manually or in some other way. With the implementation of Radware Cloud Service, they were freed from those tasks and were able to balance their workloads significantly. While it does not reduce the size of the team or the number of resources, it does optimize each one's time and allows them to do more tasks that they did not previously perform.
What was our ROI?
Since I started using the platform, one specific result that has improved is the reduction in the number of unauthorized access attempts, which is good because we are in the process of ISO 27001 certification, and this has decreased considerably. Additionally, the impact on response times and process optimization has been excellent, as response times have decreased considerably and our platform has higher levels of availability.
What's my experience with pricing, setup cost, and licensing?
The costs were quite well adjusted, the cost-benefit ratio is very good.
Which other solutions did I evaluate?
Before choosing Radware Cloud WAF Service, we evaluated other options from Cisco and we considered Cloudflare .
I chose Radware Cloud WAF Service instead of the other option after doing a pilot, and the results were much better and more convincing in terms of what we expected regarding the impact of the tool on our platform.
What other advice do I have?
My advice to other people who are considering using Radware Cloud WAF Service is to implement it, as the response times are excellent, and they should take into account and fine-tune the scope of the applications and domains they want to evaluate. They should also consider the traffic and the throughput. I would rate my overall experience with Radware Cloud WAF Service a ten out of ten.
Roberto Carlos Castellar Ardila
Cloud security has strengthened API protection and now reduces downtime for critical transactions
Reviewed on Apr 15, 2026
Review provided by PeerSpot
What is our primary use case?
Radware Cloud WAF Service protects the web applications that are the APIs and transactional systems. In the WAF , all the protection is configured for the website and internal ticket sales system. In addition to everything related to the tickets, all APIs are protected, which is very useful for the microservices architecture and all the integrations with the different providers.
What is most valuable?
The best features offered by Radware Cloud WAF Service are the ease of integration, in addition to all the security it offers, the high availability it has, and the automatic updating of the solutions.
Radware Cloud WAF Service has had a positive impact with improvements in security. All issues related to incidents have been reduced, and it informs and gives control over any latency or any misuse that someone might try with an API.
Denial-of-service issues and the downtime of those APIs have been mitigated by approximately 30%, since previously, over a period of time, there were quite a few outages. With this integration of the tool to mitigate all those issues, it has improved in that sense.
What needs improvement?
Something that could be added to Radware Cloud WAF Service would be a bit more training and not having to depend so much on the vendor, because sometimes when you have to configure advanced policies it requires a lot of experience and dependence on the vendor to provide support throughout the implementation of those advanced policies.
The interface is quite intuitive, and there are no other improvements needed.
For how long have I used the solution?
Radware Cloud WAF Service has been used for approximately two years.
What do I think about the stability of the solution?
Radware Cloud WAF Service is quite stable.
What do I think about the scalability of the solution?
Radware Cloud WAF Service has been able to adapt as the organization has grown a lot in applications and APIs, and the tool has worked without any issues.
How are customer service and support?
The experience with Radware Cloud WAF Service's customer support has been quite positive. They have always assisted quickly and without any issues whenever assistance has been needed.
Which solution did I use previously and why did I switch?
No other solution was used before implementing Radware Cloud WAF Service.
How was the initial setup?
The process of integrating Radware Cloud WAF Service into the environment was very quick. Everything really was very fast, and with the documentation provided, it was possible to do it easily and achieve the objective, which was to integrate the platform.
What about the implementation team?
The organization is only a customer of the vendor.
What was our ROI?
All the benefits obtained have been in security, in prestige, and from using this type of tool for the operation.
What's my experience with pricing, setup cost, and licensing?
The cost of Radware Cloud WAF Service is actually a bit high, but given all these benefits, the investment makes sense.
Which other solutions did I evaluate?
Other options in the market were evaluated, looking at different alternatives from different vendors. Palo Alto and Check Point were evaluated before deciding on Radware Cloud WAF Service.
What other advice do I have?
Radware Cloud WAF Service is deployed in public cloud, directly on Radware's cloud in the public cloud. Being in the cloud is quite a strong point for Radware Cloud WAF Service.
Other companies considering using Radware Cloud WAF Service will find a very robust tool that has different types of applications for managing all the APIs, all the applications, and controlling the security of all the entities.
Everything important about Radware Cloud WAF Service has been covered in this interview. This interview is considered very complete and appropriate for the moment and for the product. This review has been given a rating of 9.
Vladimir Castro Paulino
Protection for web apps has improved and monitoring now provides clear attack visibility
Reviewed on Apr 15, 2026
Review provided by PeerSpot
What is our primary use case?
The main use case for which I use Radware Cloud WAF Service is the protection of web applications. I protect a web application from denial-of-service attacks using Radware Cloud WAF Service .
What is most valuable?
The best features that Radware Cloud WAF Service offers include the deployment, as it is very easy to implement, and the platform management is efficient.
The specific aspects that make the implementation process simple in my experience are the integration and the redirection to the web applications.
Radware Cloud WAF Service has enabled me to save time by viewing and monitoring the traffic that my applications receive, since it isolates the attacks or threats that my web applications face.
What needs improvement?
To make Radware Cloud WAF Service even more useful for my organization, I believe there should be greater integration with other tools, such as log tools.
I would rate it a 9 and not a 10 because the dashboard is sometimes not as intuitive as it could be for displaying the necessary information. You have to take a few extra steps in order to view the information you need.
For how long have I used the solution?
I have been using Radware Cloud WAF Service for approximately 3 years.
What do I think about the stability of the solution?
I consider Radware Cloud WAF Service to be quite stable in its daily operation.
What do I think about the scalability of the solution?
I would rate the scalability of Radware Cloud WAF Service as good, as it adapts well to the growth of my needs.
How are customer service and support?
My experience with Radware Cloud WAF Service's customer support has been excellent, as the partner we have responds to us on time and as diligently as possible.
Which solution did I use previously and why did I switch?
Before using Radware Cloud WAF Service, we did not have any solution previously.
What was our ROI?
I have seen time savings due to the visualization and monitoring of the attacks on the applications since I started using Radware Cloud WAF Service.
What's my experience with pricing, setup cost, and licensing?
My experience with the pricing, implementation cost, and licensing of Radware Cloud WAF Service is that it costs what it is worth for what you receive.
Which other solutions did I evaluate?
Before choosing Radware Cloud WAF Service, I evaluated alternatives such as Barracuda and Cloudflare WAF .
What other advice do I have?
The advice I would give to other companies considering implementing Radware Cloud WAF Service is to take into account that it is an excellent tool for protecting their applications. I would rate this solution a 9.
José Chamorro
Security has provided robust visibility into cloud traffic and centralizes monitoring
Reviewed on Apr 14, 2026
Review provided by PeerSpot
What is our primary use case?
Radware Cloud WAF Service serves as a Web Application Firewall for the applications my organization has exposed on the internet that are hosted in the Azure cloud. I use Radware Cloud WAF Service as a WAF for applications that are exposed on the internet, and it provides us broad visibility and monitoring of all the traffic that goes to them.
How has it helped my organization?
Radware Cloud WAF Service has positively impacted my organization by providing broad visibility into the traffic and the requests from our third parties to our exposed services.
A specific example of how these features have benefited my organization is that we currently have our core system hosted in the Azure cloud and exposed, and many third parties consume our service. With Radware Cloud WAF Service, we have visibility and can see all the traffic and the requests that are generated to our services.
What is most valuable?
The best features that Radware Cloud WAF Service offers are the robustness and the visibility I have of my applications exposed on the internet.
What needs improvement?
Regarding aspects that Radware Cloud WAF Service could improve, I would suggest that at the start, on the home interface, having dashboards that help us summarize and extract metrics would be beneficial.
For how long have I used the solution?
I have been using Radware Cloud WAF Service for approximately two years.
What do I think about the stability of the solution?
I consider Radware Cloud WAF Service to be a very stable solution.
What do I think about the scalability of the solution?
I would rate the scalability of Radware Cloud WAF Service as excellent.
How are customer service and support?
My experience with the technical support of Radware Cloud WAF Service has been very good. When we have requested support, they have provided solutions to our questions almost immediately.
Which solution did I use previously and why did I switch?
Before implementing Radware Cloud WAF Service, I did not use any other solution. It is the first WAF solution my organization has implemented.
How was the initial setup?
My experience with the costs, initial configuration, and licensing of Radware Cloud WAF Service is that the tool is somewhat expensive and not inexpensive. However, it is worth every peso I pay.
What was our ROI?
I have seen a return on investment since I started using Radware Cloud WAF Service through time savings. We now have all the traffic and visibility centralized for what goes to our exposed applications, allowing us to save time when reviewing all the traffic.
Which other solutions did I evaluate?
Before choosing Radware Cloud WAF Service, I evaluated other options such as F5 and Fortinet.
Factors that influenced my choice of Radware Cloud WAF Service instead of F5 or Fortinet include robustness and the way it is implemented.
What other advice do I have?
Radware Cloud WAF Service meets all my organization's expectations.
My advice to other companies that are considering implementing Radware Cloud WAF Service is that it is a good tool. It is not inexpensive, but it is a good and very robust tool for cloud environments.
Radware Cloud WAF Service is an excellent tool and very robust for companies that have core systems and services hosted in the cloud. I would rate this product ten out of ten.
Javi Martin
Security service has significantly reduced website intrusions and improved access control
Reviewed on Mar 30, 2026
Review provided by PeerSpot
What is our primary use case?
The main use I make of Radware Cloud WAF Service in my organization is preventing intrusions on the websites and unauthorized access.
What is most valuable?
Radware Cloud WAF Service has been essential to my organization. Radware Cloud WAF Service has had a positive impact on my organization through its great ability to detect unauthorized access, as incidents have decreased and the performance of our machines has improved. I can provide an approximate figure that the improvement in performance or the decrease in incidents is by 80%.
What needs improvement?
I think Radware Cloud WAF Service could improve by simplifying the SSL certificate renewal process. In terms of pricing, I find Radware Cloud WAF Service very expensive, and customer support is very improvable.
For how long have I used the solution?
I have been working in my current field for 10 years.
What do I think about the stability of the solution?
I consider Radware Cloud WAF Service to be a stable solution.
What do I think about the scalability of the solution?
I rate the scalability of Radware Cloud WAF Service positively.
How are customer service and support?
I would rate the customer support of Radware Cloud WAF Service as very improvable since they provide only pre-packaged answers.
Which solution did I use previously and why did I switch?
Before using Radware Cloud WAF Service, I was using the firewall's own WAF.
What was our ROI?
I have not seen a return on investment from using Radware Cloud WAF Service, as it could not be calculated.
Which other solutions did I evaluate?
We have not changed from using Radware Cloud WAF Service; we still have it and have added an extra layer of security.
What other advice do I have?
My advice to other companies considering implementing Radware Cloud WAF Service is that it is a good solution, although it is expensive.