Intuitive Dashboards and Real-Time Monitoring with Clear Security Insights
What do you like best about the product?
The intuitive dashboards and real-time monitoring provide clear, easy-to-understand insights into both traffic and potential threats.
What do you dislike about the product?
The service feels expensive, which may not be a good fit for smaller, budget-conscious organizations.
What problems is the product solving and how is that benefiting you?
It protects web applications and APIs from sophisticated, evolving threats, including OWASP Top 10 risks, zero-day attacks, API threats, and DDoS.
Detailed control over web traffic and threats
What do you like best about the product?
The fact that Radware Cloud WAF provides such a great degree of control over application security policies is what I like most about it. I use it every day in our online business of retailing products to secure the checkout processes and the customer accounts. The number of features enables us to develop granular rules of various endpoints and user behaviors. Due to its usage frequency, it has become a fixed stack in our security stack. I also like the attack logs, which are detailed, and are useful during internal security analysis and audits.
What do you dislike about the product?
The reliance on the experienced staff is another problem. Some of the policy behaviors and log details cannot be comprehensible without advanced knowledge. The features are strong and may bewilder the less experienced analysts. The lack of knowledge may extend the response time due to its frequent use. This made us invest further in special training which made our process of dealing with our cybersecurity team more costly.
What problems is the product solving and how is that benefiting you?
It is dealing with the current menace of web attacks against our public applications. Prior to the adoption, we had experienced frequent bot traffic and attempted injection attacks on our customer portal. Protection policies are now regular and organized with regular usage frequency. The list of features enables us to use layered defenses on APIs and login systems. This has minimized emergency security increases and enhanced confidence between IT and executive management.
Powerful, Adaptive Security with Seamless Integration and Strong Support
What do you like best about the product?
Powerful and Adaptive Security Protection, Ease of Use and Operational Efficiency, Flexible Deployment and Seamless Integration, High-Quality Customer Support
What do you dislike about the product?
User Experience & Management,Configuration and UI Complexity, Slow Management Operations: Security & Support Concerns: History of WAF Bypass Vulnerabilities.
What problems is the product solving and how is that benefiting you?
Overwhelming Complexity and Sophistication of Modern Web Threats
Protection from Advanced and Zero-Day Attacks:
Security Gaps and Inefficiency in Hybrid and Multi-Cloud Environments
High Operational Overhead and Alert Fatigue
Advanced protections have blocked most web attacks and now simplify daily threat management
What is our primary use case?
I use Radware Cloud WAF Service to protect customers from cyber attacks, mostly SQL injections, cross-site scripting, and degradation with DDoS attacks.
Almost every day, cyber attackers are trying to disrupt the correct functionality of the application for our customers, so I review the console in Radware Cloud WAF Service, searching for strange behavior. If I see something that is not in place, I mostly block via geolocation or IP address or by activating the advanced protection from the applications in the tenant for the customers.
Mostly, I also create different types of rules with Radware Cloud WAF Service, varying from redirections to blacklisting, to whitelisting, exceptions, rate limiting, and others to better protect the customers.
What is most valuable?
The best features Radware Cloud WAF Service offers are mostly the advanced protections because you only need to activate them, and they protect against a lot of today's most common OWASP attacks.
The advanced protections help me in my day-to-day work with Radware Cloud WAF Service because they are very effective as they attack mostly the OWASP Top 10, and they are easy to use because you only need to activate them, and by default, they block a vast gamut of cyber attacks today.
Before our customers purchased Radware Cloud WAF Service, they had a lot of breaches in their network, and after, we successfully lowered the attack rates, and by that, we protect their applications better.
Before Radware Cloud WAF Service, our customers had almost four or five million requests, and they were not always clean, but now with Radware Cloud WAF Service, we see that we block almost 95 or 96 percent of the attacks that we are receiving.
What needs improvement?
I think the things I want to improve in Radware Cloud WAF Service are, for example, the possibility to upload CSV files with IOCs, so we can load a lot of IOCs in one load instead of loading them one by one manually.
I also want the possibility of seeing traffic in real time because I only see a dashboard with the security events, but in regards to real time, I don't see something that tells me how the traffic behavior is.
For how long have I used the solution?
I have been using Radware Cloud WAF Service for almost three years now.
What do I think about the stability of the solution?
Radware Cloud WAF Service is mostly stable.
What do I think about the scalability of the solution?
I think Radware Cloud WAF Service scales pretty well because we add more applications or users, and we don't have a problem with that.
How are customer service and support?
I have a good experience with customer support for Radware Cloud WAF Service; they tend to respond quickly to our cases and they help us really well with the cases.
How would you rate customer service and support?
Which solution did I use previously and why did I switch?
I used Cloudflare and Imperva before Radware Cloud WAF Service, and we switched mostly because the security in Radware Cloud WAF Service console is easier to administrate than in the other providers.
What was our ROI?
Unfortunately, I don't have metrics for return on investment because I only administrate the console.
What's my experience with pricing, setup cost, and licensing?
My experience with pricing, setup cost, and licensing for Radware Cloud WAF Service is good.
Which other solutions did I evaluate?
I evaluated Cloudflare and Imperva before choosing Radware Cloud WAF Service.
What other advice do I have?
I invite others looking into using Radware Cloud WAF Service to try it and see all the different protections that the console can provide. I would rate this solution an 8 out of 10.
Which deployment model are you using for this solution?
Public Cloud
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Amazon Web Services (AWS)
Application layer defense that supports stable digital operations
What do you like best about the product?
The most notable thing is that it builds up business continuity in the face of huge sales campaigns. The quantity of features devoted to the DDoS mitigation and the protection of the applications is an important factor in maintaining our storefront on its feet. Consistency in frequency of use is given the fact that I cross check security posture prior to launch of every campaign. This needed to be implemented in conjunction with our hosting provider, but after it was successful, it resulted in a better environment that ensures revenue and brand reputation.
What do you dislike about the product?
One of the weaknesses is that fining tuning security policies may create false positives and end up blocking legitimate customers in the short run. Since the frequency of use is high, I frequently go through flagged sessions to prevent loss of sales. In the process of implementation, specification of exact traffic rules necessitated additional validation. Although the features are impressive, navigating the sophisticated levels of security may require extra internal knowledge and this puts extra work load on our IT team during the peak season of business.
What problems is the product solving and how is that benefiting you?
The current issue of automated attacks on the login, checkout, and promotional pages is solved by Radware Cloud WAF. Fake transactions and credential stuffing made it lose money and customer complaints prior to its adoption. Through heavy enforcement and daily usage, we are now early finding fraud. Related to the many features that concentrate on bot control and application protection secure revenue and enable my team to work on expansion strategies rather than handle security events.
Robust Protection with Slight Learning Curve
What do you like best about the product?
I like Radware Cloud WAF for its powerful bot protection and clear visibility through detailed dashboards. This makes it easy to understand traffic behavior and blocked threats, adding a lot of practical value by providing control and clarity over what's happening in the network across our web applications.
What do you dislike about the product?
There are few areas based on reviews and user feedback that could be improved to make the experience smoother. It's noted that while it's protecting the network strongly, the solution can be producing false positives sometimes.
What problems is the product solving and how is that benefiting you?
Radware Cloud WAF solves the problem of blocking critical web attacks like SQL injections and cross-site scripting, provides real-time traffic visibility, and offers strong application layer DDoS protection.
Robust Threat Protection, Needs UI Improvement
What do you like best about the product?
I like Radware Cloud WAF for its strong protection against OWASP top 10 threats, which is crucial for securing our web applications. The initial setup was fast, making it convenient to get started quickly.
What do you dislike about the product?
The user interface could be more user-friendly.
What problems is the product solving and how is that benefiting you?
I use Radware Cloud WAF to protect against SQL injection attacks and prevent unauthorized access by blocking malicious users exploiting application vulnerabilities.
Radware Cloud WAF Makes AppSec Proactive Without the Weekend Manual Tuning
What do you like best about the product?
As an administrator who has spent plenty of time in the trenches of application security, I can tell you that what I like best about Radware Cloud WAF isn't just one flashy feature—it’s the shift from being "reactive" to "proactive" without losing my weekends to manual tuning. Beside I like Behavioral-Based Bot Management and ease of implementation
What do you dislike about the product?
I have to be honest: there are definitely parts of the platform that can be a headache. If you’re coming from a more "modern-feeling" SaaS like Cloudflare or Akamai, some of these friction points will be immediately apparent.
what I dislike about Radware Cloud WAF is: The "Frankenstein" UI & Workflow, The "Black Box" Backend and Reporting & Logging Granularity
What problems is the product solving and how is that benefiting you?
The problems Radware Cloud WAF solves usually boil down to resource constraints and the evolving complexity of attacks. In a modern environment, we aren't just fighting simple SQL injections anymore; we’re fighting sophisticated bots and zero-day vulnerabilities that appear before we can patch the code.
Effective and Practical Protection, although Support Could Be Improved
What do you like best about the product?
I like that Radware Cloud WAF is a cloud platform that is easy to work with and implement. Additionally, I consider the cost-benefit ratio to be very good. The configuration was practical, as having our policies from another tool allowed us to quickly replicate and migrate the portals, which saved us time.
What do you dislike about the product?
Some rules, such as in handling bot attacks, require raising cases with the manufacturer, and the response time can be delayed. This can negatively impact the business, as it does not allow for such long waiting times.
What problems is the product solving and how is that benefiting you?
I use Radware Cloud WAF to protect my web portals from attacks, mainly denial of service and bots. It is a cloud platform that is easy to implement, saves time, and offers good cost-benefit ratio.
Comprehensive security
What do you like best about the product?
that minimizes false positives and protects against zero-day attacks automatically. Additionally, its advanced bot mitigation and comprehensive API protection offer a superior security layer that perfectly adapts to multi-cloud environments.
What do you dislike about the product?
What I like the least is its steep learning curve and the complexity of the interface, which often requires relying excessively on their technical support (ERT) for advanced configurations.
What problems is the product solving and how is that benefiting you?
Stop zero-day attacks, malicious bots (scraping/fraud), and vulnerabilities in APIs that traditional WAFs do not detect, in addition to mitigating DDoS attacks.
