Insights from F5 Distributed Cloud WAF (Web Application Firewall) Reviewers
Based on 62 verified reviews published in the last 18 months
TrustRadius Community Insights are summaries of user sentiment data from TrustRadius reviews and, when relevant, HG Insights data.
Overview
Synthesised from 62 reviews | Last Published June 17, 2026
F5 Distributed Cloud WAF is widely used by organizations to secure web applications and APIs against a diverse range of cyber threats, often serving as a critical first line of defense for internet-facing applications. In TrustRadius reviews, users deploy it across multi-cloud and hybrid environments for consistent protection, valuing its robust application security, particularly its Layer 7 DDoS defense, and simplified deployment and configuration.
Emerging positives include its effective bot protection and ability to limit false positives. However, reviewers frequently suggest enhancements in AI and automation for rule setup and detection, along with improvements to the user interface and dashboard usability, which some find complex. Despite these areas for refinement, the platform is generally seen as a valuable investment, significantly improving security posture and offering operational efficiencies.
Pros
Robust Layer 7 DDoS protection
Easy configuration and deployment for security policies
Effective prevention of security incidents and data breaches
Strong application protection against common threats like SQL injection and XSS
Efficient bot protection with limited false positives
Cons
Limited AI and automation for advanced rule setup and detection
Complex user interface and dashboard navigation
Initial configuration and deployment can require extensive knowledge
Search functionality within the GUI needs improvement
Because there are a lot of applications that are internet facing that needs to be secure with WAF because a lot of people try to infiltrate or get into our systems. So that is why we deploy this capability to stop that intrusion to our systems and make our applications more secure.
Pros
Mainly with interest and detection, the datas and all those aspects, the security aspects of it.
Cons
I think mainly the latest feature with AI and other things, I think maybe they need to add more AI detections and other things into the product.
Likelihood to Recommend
Mainly for any internet facing applications, any web based applications that are internet bound, we definitely recommend that.
Haven't deployed to production yet, only QA. Production is still in transparent mode. The policy learning has been impressive and minimal disruption to QA.
Pros
Learning and recommendations
Reporting of threats
Reporting of false positives
Cons
Some false positives did not allow recommendations
Interface can be complicated
Profile building requires a lot of knowledge on best practices
Likelihood to Recommend
Extremely nice when already using F5 LTM.
VU
Verified User
Administrator in Information Technology (5001-10,000 employees)
We are into the HAVC industry and lot of cloud and API's to be protected and using Cloud and on-prem F5 Distributed Cloud WAF to protect from BOT and DDOS.
Pros
API End point discovery and protection
DDOS
BOT and coustomizing the scanning
Cons
Integrating on-prem F5 Distributed Cloud WAF to cloud products for DDOS and BOT defense
Likelihood to Recommend
Azure and Cloud flare CDN is not able to provide the features we are looking so removed cloud native WAF and integrated with F5 Distributed Cloud WAF.
VU
Verified User
Administrator in Information Technology (10,001+ employees)
Trying to understand the risks that enter my website was extremely simple after using F5 Distributed Cloud WAF. The dashboard was very easy to understand and the user-friendly platform made communicating to management easy. By understanding F5 Distributed Cloud WAF and risks to the organization, I could prioritize next steps withing my organization. It did take some time to onboard the solution, as it was not intuitive to deploy, but the F5 team were very quick to support my IT Team's needs.
Pros
UI dashboard to understand risks and traffic
Integrations with other platform solutions
Identify risks
Cons
Implementation
Integrations with Microsoft
Ticketing system for support
Likelihood to Recommend
I have already answered this question in a lot of detail.
I've been using F5 Dist WAF for my current job. This is a great tool for monitor and protect our internal webs to external as well internal network. I'm confident to say that with F5 WAF, my job is now much easier and and always reply on it for my job.
Pros
Protection
Security
Prevention
Cons
UI
Likelihood to Recommend
I don't really have any specific scenarios about F5. I have a great experience and don't have a problem.
VU
Verified User
Analyst in Information Technology (10,001+ employees)
I use F5 Distributed Cloud WAF (Web Application Firewall) when trying to prevent Web application attacks and reduce the attack surface, security incidents and data breaches. Protecting our endpoints from exposure. Mitigate web attacks and vulnerabilities with comprehensive security controls.