We use Radware Cloud WAF Service for WAF protection and API protection.
Radware Cloud WAF
RadwareExternal reviews
177 reviews
from
and
External reviews are not included in the AWS star rating for the product.
Advanced Protection and Specialized Support
What do you like best about the product?
I like the intuitive interface of Radware Cloud WAF and the specialized support they offer. I also appreciate the protection it provides against business logic. The initial setup was intuitive and the factory staff accompanied us during the onboarding, which made the process easier.
What do you dislike about the product?
The reports are with predefined templates, it would be better to allow selecting time intervals and what information is required.
What problems is the product solving and how is that benefiting you?
Radware Cloud WAF protects our applications against application-level attacks, malicious bots, and business logic issues. I appreciate its intuitive interface and specialized support.
Simplicity and security that inspire confidence
What do you like best about the product?
Simplicity in the tools, and the security it brings us.
What do you dislike about the product?
Sometimes the panel goes into maintenance, but we understand that it is always for the good and to improve our experience.
What problems is the product solving and how is that benefiting you?
Prevent our applications from all the threats that are present in the cloud world.
Real-Time Threat Detection /Protection
What do you like best about the product?
What I appreciate most are the real-time threat detection capabilities and the low rate of false positives. The solution simply works as intended and helps keep our applications secure.
What do you dislike about the product?
The interface offers a wide range of features, and as users become more familiar with it over time, their understanding grows, which in turn improves their overall efficiency.
What problems is the product solving and how is that benefiting you?
Radware Cloud WAF provides strong protection for our applications against a broad spectrum of web threats, such as bots, DDoS attacks, and zero-day vulnerabilities. Its ability to automatically detect and block malicious traffic has eased our security workload and helped keep our applications both secure and consistently available.
Stable, Reliable with Easy Setup and Strong Protection
What do you like best about the product?
I like how stable and reliable Radware Cloud WAF is, as it quietly protects in the background and the clear dashboards make it easy to understand what's going on without sifting through a lot of data. The automatic tuning saves a lot of time by reducing false positives and cutting down on manual work. It makes our security flow smoother and less stressful, which is a big plus. Additionally, I like how well it integrates with our other tools like SIEM, enriching the data we collect, and making everything fit together nicely. Overall, the initial setup was easier than expected, and Radware Cloud WAF truly offers stronger protection and better visibility compared to our previous setup.
What do you dislike about the product?
Sometimes the interface feels a bit slow when working with larger datasets, and a smoother user experience would definitely help. I’d also appreciate more flexibility in customizing certain rules. Nothing critical, but there’s room for small improvements.
What problems is the product solving and how is that benefiting you?
I use Radware Cloud WAF to protect our web apps from attacks, filter bot traffic, and reduce false positives. It lessens the team's workload by automating security measures and keeping our traffic clean, preventing downtime.
Strong Security Performance, but Pricing and Dashboard Can Improve
What do you like best about the product?
Radware Cloud WAF is really easy to use and great at catching threats in real time. It gives instant visibility into what’s happening, which makes managing security much simpler.
Their support team is excellent, very professional, quick to respond, and they truly understand the platform and customer needs. In urgent situations, they provide fast, priority help without any hassle.
The bot protection is also very good. It reliably detects and blocks automated attacks, which adds an extra layer of security.
Their support team is excellent, very professional, quick to respond, and they truly understand the platform and customer needs. In urgent situations, they provide fast, priority help without any hassle.
The bot protection is also very good. It reliably detects and blocks automated attacks, which adds an extra layer of security.
What do you dislike about the product?
The dashboard could be more user-friendly, since some insights take extra clicks to find.
Also, the per-license cost is higher than many similar tools, which makes it less budget-friendly for some teams.
Also, the per-license cost is higher than many similar tools, which makes it less budget-friendly for some teams.
What problems is the product solving and how is that benefiting you?
Radware Cloud WAF helps keep our applications safe from many web threats like bots, SQL injection, and cross-site scripting.
It detects and blocks attacks in real time, which reduces risk and prevents downtime.
he geo-blocking feature is also very advanced and helps us easily control traffic from high-risk regions.
It detects and blocks attacks in real time, which reduces risk and prevents downtime.
he geo-blocking feature is also very advanced and helps us easily control traffic from high-risk regions.
Strong Web Application Security
What do you like best about the product?
What I appreciate most about Radware Cloud WAF is its ability to detect threats in real time and automatically mitigate them. It delivers robust protection against web attacks while having little effect on performance, which makes it both secure and efficient.
What do you dislike about the product?
It requires a more in-depth understanding of security policies to achieve full optimization. Furthermore, the initial setup and fine-tuning process can be time-consuming, depending on the specific environment.
What problems is the product solving and how is that benefiting you?
Radware Cloud WAF addresses essential security challenges by protecting against web-based attacks such as SQL injection, cross-site scripting, and DDoS threats. It has been beneficial for us by offering real-time threat detection, automated mitigation, and enhanced visibility into application traffic. This ensures that our web assets stay secure and compliant, all while requiring minimal manual intervention.
Radware WAF Cloud: A Web Application Security Platform
What do you like best about the product?
Radware WAF is a strong performer when it comes to securing web applications. It offers solid protection against OWASP Top 10 and zero-day threats, and supports bot mitigation, API security, and flexible deployment models. The platform is easy to manage, integrates well with SIEM and SOAR tools, and meets high availability SLAs. Its centralized reporting and real-time alerting make it a reliable choice for infrastructure teams looking for visibility and control. Just note that it supports only TCP ports, which can be a limitation for certain use cases
What do you dislike about the product?
While Radware WAF is solid for securing web apps, there are a few things that could be better. It doesn’t support UDP traffic, which limits onboarding for certain real-time applications
What problems is the product solving and how is that benefiting you?
We faced a major integration problem with SIEM where RadWare helped with Logstash integration. Also was a great help in implementing SSO.
Has managed high traffic efficiently and reduced false positives while maintaining strong API protection
What is our primary use case?
What is most valuable?
The best features of Radware Cloud WAF Service are its ability to manage high traffic, its scalability, and its reliability. Whenever we observe any detections or unusual traffic at a high rate, Radware manages the replication of web applications in such a way that no web applications are ever hampered, ensuring all traffic is managed effectively.
Radware Cloud WAF Service has significantly reduced our false positives, as Radware keeps its policies up to date with emerging tactics. This has led to very few false positives, which is one reason we have chosen to implement Radware WAF in our environment, given its favorable false positive ratio.
What needs improvement?
In Radware Cloud WAF Service, the areas that have room for improvement include the costing part, as we faced some issues during the implementation and POC of this WAF technology.
Additionally, the policy management can be improved, along with the graphical user interface for better visualization, so any new user can adapt to its graphics and find it easier to use.
For how long have I used the solution?
I have been using Radware Cloud WAF Service for around three plus years.
How are customer service and support?
I would rate the support a perfect 10 out of 10 because the support is good.
What was our ROI?
We have seen a good amount of return on investment with Radware Cloud WAF Service, roughly 50 to 60%. By reviewing our alerts and traffic, we can assess what traffic has been blocked and how much it has saved our applications and infrastructure.
Given our critical web applications and our substantial environment, where many applications are onboarded on WAF, overall, we can say it has yielded good returns on investment.
Which other solutions did I evaluate?
When I compare Radware Cloud WAF Service with other WAF software, I notice that while Radware's technology is strong, the only cons we faced were related to costing and some policies. Other solutions are available in the market, but they also have their drawbacks.
What other advice do I have?
We use the CDN services offered by Radware with Radware Cloud WAF Service. The combination of CDN and Radware Cloud WAF Service is easy to use, and the security it offers is good, especially with the WAF plus DDoS integration, which is ideal for media and all types of streaming.
I assess Radware Cloud WAF Service for blocking unknown threats and attacks as effective because it updates its mitigation policies with day-to-day strategies, incorporating new and emerging tactics. Additionally, it blocks some traffic based on AI, which enhances its ability to manage intrusion threats.
The automated analytics for looking at events is positive, as it has inbuilt automations that reduce our manual intervention. Due to this, there is a quick incident response in case of any high alert or critical case, ensuring that proper mitigations have been taken care of for any incident, which allows for a rapid response over any alert.
Radware Cloud WAF Service for integrating with other systems and applications in our business is seamless, as we have integrated Radware WAF with our SIEM monitoring tool, Microsoft Sentinel. We can get centralized logs for every tool on Sentinel, and it was easy to implement and integrate with it. Throughout the integration with Sentinel, we received excellent support and good documentation.
I assess Radware Cloud WAF Service for its ability to protect against zero-day attacks as competent since it adapts behavioral models. If it observes any vulnerability that Radware WAF hasn't recognized in its recent models, it trains its models based on behavior to manage zero-day exploits, ensuring that if any sudden bot traffic or API abuse occurs, Radware mitigates it and blocks all such traffic effectively.
The combination of negative and behavior-based positive security models is crucial for our organization's security strategy because Radware assumes everything is allowed unless it observes any malicious activity or anomaly. In such cases, WAF only blocks when something malicious or specific signatures are observed, making it reliable for our applications and ensuring none are hampered by any false positives.
We use Radware Bot Manager. With Radware Bot Manager, we have discovered issues such as web scraping and DDoS bots from our incoming bot traffic that we weren't aware of before, as it provides detections for that and actively blocks all such DDoS traffic and bot traffic based on its AML algorithms. We have also enabled API bot protection.
We use the web DDoS protection offered by Radware. Radware Cloud WAF Service has helped in our business continuity by ensuring that no legitimate traffic is blocked. Only when something suspicious based on L3, L4, or L7 DDoS attacks or such signatures is observed does Radware block malicious traffic, guaranteeing reliability and continuity for our web applications.
The solution requires maintenance when we want to configure or tweak any policy, which is when we seek support from the tech team.
Our team includes 30 engineers who use Radware WAF. We will recommend this product to other users because we have suggested it to our peers. Looking at the solution this tool has provided us, we find it beneficial enough to promote it to others.
On a scale of 1-10, I rate this solution a 9.
Reliable WAF Solution
What do you like best about the product?
Strong defence against web and bot based attacks. Using it regularly for a comprehensive dashboard and view and easy to use and navigate.
What do you dislike about the product?
Managing false positive is challenging task.
What problems is the product solving and how is that benefiting you?
It is ensuring real-time protection against web attacks and bots which leads to high availability of the application and up-time. It has decresed the incidents being faced.
Strengthens API threat detection and helps meet compliance during security investigations
What is our primary use case?
My use case for Radware Cloud WAF Service is that we have Radware as one of our products for security protocols that we have established at our organization. Whenever there is a cloud security alert, we check Radware services so that we can mitigate the alerts.
What is most valuable?
What I appreciate the most about Radware Cloud WAF Service is the API management. The API information that they provide is excellent. The hidden and non-discoverable APIs information available with Radware Cloud WAF Service is really great.
I cannot share some important details of the incident that we received. That said, thanks to this feature, we were able to mitigate a threat. The information they provide and the discovery they do really help us out in some incidents.
They also help us meet compliance requirements. Being a big organization, we have to meet certain compliance standards, and for the PCI DSS, this product really helps us out.
Radware Cloud WAF Service is a comprehensive tool, and my functionality with it is limited as I'm working on multiple things at a time as a security consultant. In our organization, only specific tasks are assigned to a single individual. That's why I'm primarily focused on API security and sometimes DDoS attacks.
Radware Cloud WAF Service integrates very well with other applications and services; we have Microsoft TI tool with us, and it's integrated efficiently. We receive the alerts on time.
Regarding zero-day attacks, we are fortunate that we haven't received any as of now. For API security, I have closely seen how Radware Cloud WAF Service has helped us twice this year.
We use Radware Cloud WAF Service for our security purposes. We have a symbiotic relationship with Radware Cloud WAF Service. They provide us with information and necessary security steps, and we use it for our investigation or threat hunting.
What needs improvement?
As for the downsides of Radware Cloud WAF Service, I would surely appreciate some AI integration with report management. Whenever we handle an incident, we have to generate many reports. We have to get data, information, and screenshots on multiple things. A future feature in Radware Cloud WAF Service that could give us a presentable report for our stakeholders would be a really great addition.
For how long have I used the solution?
I have been using Radware Cloud WAF Service for about 18 months.
What do I think about the stability of the solution?
I have never seen any lagging, crashing, or downtime with Radware Cloud WAF Service.
What do I think about the scalability of the solution?
The cloud engineering team has told us it's really scalable. Whenever we deploy something or integrate this, it's really flexible with the DevOps and DevSecOps teams.
How are customer service and support?
I have never contacted the technical support or customer support. We have communication through emails; nothing very technical.
How was the initial setup?
The learning curve for using Radware Cloud WAF Service is very easy. There is nothing too complex about it.
We have these Radware information sessions and emails coming up to tell us the latest about what's happening in the cyber environment. They provide information on basic concepts and where to find it in the emails. Even a beginner can learn it within ten days.
Radware Cloud WAF Service does not require any maintenance on my end.
Which other solutions did I evaluate?
I have never used any alternatives to Radware Cloud WAF Service. In my previous company and currently at our company, it has been Radware Cloud WAF Service.
What other advice do I have?
The source blocking feature is not utilized here as we use a different solution for source blocking. My colleague handles the Bot Manager aspects. Everyone here has different tasks, roles, and responsibilities, and we get assigned to specific incidents.
I rate Radware Cloud WAF Service nine out of ten.
showing 51 - 60