Insights from F5 Distributed Cloud WAF (Web Application Firewall) Reviewers
Based on 9 verified reviews published in the last 18 months
TrustRadius Community Insights are summaries of user sentiment data from TrustRadius reviews and, when relevant, HG Insights data.
Overview
Synthesised from 9 reviews | Last Published June 17, 2026
F5 Distributed Cloud WAF is utilized by Information organizations to secure critical applications and sensitive data, which are central to their digital delivery and compliance requirements. In TrustRadius reviews, its robust application security protection is frequently highlighted, with 5 of 9 reviewers noting its role in preventing data breaches and meeting stringent regulatory standards. The product also facilitates rapid deployment and configuration, which is crucial for agile development cycles prevalent in this industry.
Reviewers appreciate the simplified application security management, particularly the reduction in manual intervention through automated policy and signature deployments. However, a recurring concern is the user experience, with the current control panel and GUI presenting friction points that can slow down critical tasks like policy configuration and incident analysis. Overall, Information reviewers view F5 Distributed Cloud WAF as a powerful security tool, but one that could benefit from interface enhancements to better support their fast-paced operational demands.
Pros
Robust protection for web applications and APIs, critical for information delivery.
Supports compliance with data protection regulations in the Information sector.
Enables rapid deployment and configuration, aligning with agile development workflows.
Reduces manual security intervention through automated policy and signature deployments.
Centralizes security management across diverse application environments.
Cons
User interface and control panel can be complex, impacting operational efficiency.
GUI friction points slow down critical tasks like policy configuration and incident analysis.
It helped me protect information from my DBs and it helped me extract information about the use of my DBs. An attack was stopped very well and they couldn't steal information.
Me ayudó a cuidar información de mis DB y me ayuda a sacar información del uso de mis DB un ataque lo detuvo muy bien y no pudieron robar información
Pros
Usage reports
Suspicious analysis
Bad configurations
Reportes de uso
Análisis sospechosos
Malas configuraciones
Cons
Risk analysis
Recommendations
Automatic reports
Análisis de riesgo
Recomendaciones
Reportes automáticos
Likelihood to Recommend
Because I can share experiences that helped me in an information theft attack, no matter what type of DB or site you have, you give it to protect your sites and it starts acting immediately, taking care of the availability of the sites and makes it so that clients see it all the time without the risk of it being taken down.
Porque puedo dar experiencias de que me ayudó en un ataque de robo de información sin importa que tipo de DB o site tienes le das que te proteja tus sitios y empieza a actuar inmediatamente cuídando la disponibilidad de los sitios y hace que los clientes la vean todo el tiempo sin riesgo a que la vayan a tumbar
This review was originally written in Spanish and has been translated into English using a third-party translation tool. While we strive for accuracy, some nuances or meanings may not be perfectly captured.
VU
Verified User
Consultant in Information Technology (51-200 employees)
Currently, our clients' requirements are focused on improving security and customer experience. To achieve this, it is necessary to have technologies like those of F5 Distributed Cloud, providing all the experience of its cutting-edge technologies that allow us to deliver quality and secure applications and services that the business requires.
Actualmente los requerimientos de nuestros clientes estan enfocados en mejorar la seguridad y la experiencing de sus clientes , para esto es necesario disponer de technologies como las de F5 distributed Cloud., aportando toda esa experiencia de sus technologies de vanguardia que permiten entregar aplicaciones y servicios de calidad y seguridad que require el negocio.
This review was originally written in Spanish and has been translated into English using a third-party translation tool. While we strive for accuracy, some nuances or meanings may not be perfectly captured.
Using F5 Distributed Cloud WAF’s distributed cloud WAF to onboard applications ( cloud, On-prem) To mitigate OWASP top 10 attacks Secure Web app API protection To meet PCI DSS, GDPR and HIPAA
Pros
Mult-cloud protection
BOT protection
API security
Ease of deployment
Compliance ensblement
Cons
GUI can be improved to more user friendly
Likelihood to Recommend
API protection mobile app protection
VU
Verified User
Professional in Information Technology (5001-10,000 employees)
We are very happy to use Distributed Cloud, because i have a a lot of visibility from attacks, and visibility a lot a capacity in only one console, them i have a good service in incident scalation. To integrate more applications is very easy and my teams learns a lot of the platforms.
Pros
capacity
continuity
trazability
Cons
prices
courses
api options protection
integrations
Likelihood to Recommend
good platform, a lot of capacity and functionality, a faster deployment, good services, good service teams commercial and good teams technical. we had in general a good experience, excelent trazability, then the interfaz delivered a good graficals and dashboard to the managers see our incidents and improvements.
VU
Verified User
Manager in Information Technology (10,001+ employees)
F5 Distributed Cloud WAF (Web Application Firewall) helps protect our marketing site against web attacks. It helps remove excess load from the WAF module on our on-premises big-IPs.
Pros
Simple configuration
Secure by default
Cons
More advanced settings to configure
Ability to add some settings in “alert only” mode while keeping the rest of the policy in block mode
Likelihood to Recommend
F5 Distributed Cloud WAF (Web Application Firewall) is great for providing an easy way to enable security on an XC load balancer with minimal configuration. It’s much simpler to enable in a secure-by-defined state than the big-ip WAF but provides less knobs and switches to fine tune policy.
VU
Verified User
Administrator in Information Technology (5001-10,000 employees)
Protect against multiple attack vectors such as credential stuffing (BOT) and L7 DDoS, however we are using more of a rate limiting solution reactive and will be assessing the proper L7.
Pros
SQL Injunction
L7 DDoS - reactive but looking into proper solution
Cons
DDoS L7 - reactive as it used as rate limiting rather than proactive Also need to understand how the BDOS function works
API - understanding the AIMM approach and false positive rating as it is critical to know for our Org
Likelihood to Recommend
Great overall WAF product not to mention the simplicity of use. Improvement for API understand how it works more specifically what is the false positive rate for assets API discovery (needs to be minimal) and also DDoS L7 protection is it BDOS behavioral DOS function or rate limiting (Prefer BDOS) to protect against zero day Bot attacks.
VU
Verified User
Manager in Information Technology (1001-5000 employees)
We use F5 Distributed Cloud WAF (Web Application Firewall) as our first point of interaction from our customers to our services, we publish our applications in our XC platform and we apply the security F5 Distributed Cloud WAF (Web Application Firewall) layer with a simple click solving and an easy customization allowing our security staff worry for other deployments.
Pros
Easy deployment
Fast Learning
Less false Positives
Likelihood to Recommend
The F5 Distributed Cloud WAF (Web Application Firewall) is suited for all customer who has to implement security in their applications and provide DDOS mitigation in that all OSI models, Bot mitigation, IP filtering, And many other functionalities included with the F5 Distributed Cloud WAF (Web Application Firewall) platform, if you need to protect your applications this is a really good solution to start.
VU
Verified User
Consultant in Information Technology (501-1000 employees)