Cloud Protection

We are using the service for DDoS protection, and all applications that are accessed over the internet need to be put behind the Radware WAF . Currently, we are using 60 to 65 licenses of Radware WAF  where we have onboarded these internet-exposed applications. 

Our package includes protection from the Top 10 OWASP attacks and behavioral learning, which is important for traffic monitoring. We focus on low latency mitigations and granular controls in application level policies. When onboarding any application, we work with our stakeholders who inform us which controls should be enabled or disabled. We communicate with the Radware team, and after learning the traffic patterns for 10 to 15 days in the normal mode, Radware provides documentation to share with our stakeholders before moving to protection or block mode.

We are the owners of the Radware DDoS licenses, and there is a dedicated team providing 24/7 real-time monitoring of the product. The detection and prevention capabilities are very good.

It provides protection for network applications and infrastructure level, and the best part is the behavioral-based detection that Radware  provides us, along with real-time signature creation. We also have some applications where we have botnets running, and it provides protection against them. 

Web DDoS targets the application layer, which is layer seven of the OSI model. For that, we focus on the Web DDoS technique for bot-based attacks because we have many applications where bots are running. We also face many random URL attacks every day, and it protects against malicious or suspicious random URL attacks.

It ensures both security and performance. It achieves this by learning behavior patterns and providing protection without blocking normal traffic. These are some of the features I am particularly satisfied with in this product.

There should be some extra layer of security and a method of advanced rate limiting. We can limit the number of IPs or URLs per session and per country. There should be improved bot management integration that mitigates bot-based DDoS attacks completely.

I have been using Radware DDoS for the last two to three years.

It's stable. I would rate it a nine out of ten for stability. 

It's scalable. I would rate it a nine out of ten for scalability.

We have 65 licenses.

I'm from India, and we have a dedicated technical account manager who is very supportive. Additionally, we have a large partner team that is a gold partner of Radware. They provide a lot of support as well. Whenever I encounter any issues, I can easily reach out to Radware. I typically submit a ticket for any malicious activity that occurs, and I usually receive a resolution within two to three hours.

Positive

Many years back, I used Barracuda WAFs. I cannot comment on what Barracuda is currently doing in the WAF area, but that solution was good. However, with Radware DDoS, the console is very easy to learn. There is no complexity, and everyone can use the console and easily see all the features. In the future, I will definitely continue with Radware DDoS.

The setup is easy as it is a cloud-based service. It does not present any significant challenges and takes only one or two days to implement.

It saved us 40% to 50% of time, money, and resources. 

It is not expensive. It is medium range. The pricing is good, as we recently renewed our licenses from Radware.

I've been using this solution for the past two and a half years at my company, and I’m pleased to share that we’ve successfully achieved all of our use cases with their services. We are very happy with the product, which effectively detects and prevents external attacks. We also recommend Radware DDoS to other customers because it truly is one of the best products available.

According to what I learned from the Radware DDoS team, the new features are AI-powered, which makes everything faster and more efficient. The best part is the auto policy with zero-touch tuning. We do not require much tuning as we can auto-apply the policy, which automatically optimizes itself using behavior analytics. We have recently purchased API discovery and protection features, which are working very effectively.

We purchased the API protection plan. Previously, testing was done manually while creating software. We have purchased the Radware API discovery and API protection plan, which has reduced our time effort and enhanced quality checks. There was only one incident in the last two to three years, which Radware WAF handled very effectively. We had only two to three hours of downtime for that particular application.

I recommend Radware because of its features, including AI-powered Web DDoS protection, zero-touch tuning, auto policy, API discovery and protection, and advanced bot manager. They have excellent device fingerprinting, behavior analytics, and enhanced threat intel feed that they provide to customers. These are the main reasons I would recommend other customers to choose Radware. 

I would rate this solution a nine out of ten.

We are the largest data center company in Asia with almost six data centers in India, and we are planning to expand beyond India. We use Radware DDoS Protection Service  for protecting our infrastructure and providing Cloud DDoS as a service to around 500 end customers who have hosted their infrastructure on our cloud co-location.

We've been using it in a fully-manged way, and always on an on-demand. 

We began to see value almost a year back. It took a year to streamline when using it, and then we started we started onboarding our customer on the same pipe. 

We wanted to protect our own data center. We are India's only cloud. We are in direct or hyperscale. We are in direct competition with Azure , AWS , and all. And at the same time, we have lots of ISP networks. 

Our environment is hybrid. We are the largest data center. Most of the infrastructure is on-premise, and then we have India's first AI cloud and India's first hyperscale. It took almost a year to streamline everything. 

Radware DDoS Protection Service  is valued for its multi-layered defense protection, always-on and on-demand service, zero-day protection with adaptive behavioral-based mitigation, DNS and infrastructure protection, and SSL attack mitigation. The solution's multi-layer protection covers volumetric, protocol-based, and application layer attacks.

They offer a very effective response against DNS attacks. 

Regarding behavior-based detection technology, in terms of real-time detection, it has been able to reduce false positives. We have pretty good experience with them. The geolocation is pretty good for an organization such as ours. We can block anything from certain regions, like North Korea or China, etc, cetera. It works alongside machine learning. They can update policies globally in less than ten seconds, which really helps with false positives.

During a DDoS attack, it ensures legitimate users are not affected. We're working on a hybrid solution, so we have Defence Pro devices on our side and unlimited mitigation capabilities on the cloud. 

Their Cyber Security Controller portal, including its GUI and dashboard, could be more intuitive so CXOs can easily understand them. 

Improvements in visualization for reporting also need consideration. This feedback has already been provided directly to Radware DDoS Protection  Service.

We have been using the solution for the past 12 years or possibly more.

Lately there have been some issues with stability, which results in a stability rating between eight and nine out of ten.

Scalability has never been a challenge due to the hybrid cloud model and the Cloud DDoS capability, which allows scaling as demand increases.

We have 24/7 access to Radware DDoS Protection  Service's Emergency Response Team who collaborate during ongoing attacks, ensuring less than one second mitigation for L3/L4 and less than ten seconds for L7. This is supported by a direct relationship with key personnel at Radware DDoS Protection Service.

Positive

We conducted a POC with F5 and Arbor Networks. We chose Radware DDoS Protection Service due to its superior capabilities and willingness to host a scrubbing center, minimizing latency.

The initial setup was quite easy, aided by a team experienced with Radware DDoS Protection Service for well over a year.

Implementation was handled internally by a team of six to seven team members who were experienced with Radware DDoS Protection Service.

The ROI was realized after a year, giving a year-on-year return of around 20% to 30%. The hybrid approach optimized infrastructure costs and personnel resources.

We have a premium cost setup to align with a tier four uptime certified data center, storing and protecting critical infrastructure.

Radware DDoS Protection Service stood out due to its better capability and flexible hosting options that reduced latency.

Radware DDoS Protection Service offers enterprise-grade protection across all layers from L3 to L7, with hybrid flexibility and global scrubbing network. 

On a scale of one to ten, I rate this solution an eight or nine.

My use case is that whatever traffic is coming from the internet, all that traffic is being monitored. It is sent to their scrubbing center, and from there, anything non-genuine gets blocked as per IOC, and the genuine traffic is sent to my inside applications.

Since implementing Radware DDoS Protection Service, I have been able to see DDoS attack sources and their origins. We didn't have the capacity to visualize DDoS attacks before. Blocking is also very fast compared to before, around 18 seconds of blocking time.

In my organization, I have observed many SQL injections and cross-site attacks, alongside heavy bandwidth utilization, which Radware DDoS Protection Service has been able to mitigate effectively.

Since implementing Radware DDoS Protection Service, I have experienced a transformation. I didn't have any DDoS mitigation tool previously, and my internet bandwidth was completely utilized by DDoS attacks. It is now filtering at the scrubbing center, especially during volumetric attacks.

Radware DDoS Protection Service ensures that legitimate users are not affected during DDoS attacks by communicating with my Anti-DDoS DefensePro tool. Based on configured policies, the scrubbing center can pass the traffic while already blocking the designated attackers' IPs.

Before implementing automation, my security monitoring team had to continually monitor DDoS attacks around the clock and send IPs for approval to the operations team for blocking, whereas now, it automatically blocks based on policies.

The time consumption in our processes has decreased compared to before because the internal ticketing process required approval from respective authorities, while now it is completely automated, allowing immediate blocking.

The solution effectively prevents attacks much earlier, making monitoring less burdensome than before.

Compared to other products, Radware DDoS Protection Service provides superior performance, as it blocks attacks within 18 seconds.

Previously, managing one incident took around three hours for complete approval and implementation, but now the Anti-DDoS tool immediately blocks particular IPs within 18 seconds.

With the SecOps dashboards for monitoring and reporting metrics, we can continuously monitor our Security Operations Center 24/7. We have absolute visibility.

The dashboard can provide historical information on objects and networks for three months, and we also have a backup tool that retains data for six years, per my industry policies.

The best feature of Radware DDoS Protection Service  is the automation. Previously, manual intervention was necessary, and for incoming attacks, we had to inform the respective security and operations teams, whereas now, it is an automated process that blocks attacks based on policies by default.

This automation has significantly improved my organization's security compared to before. We didn't have that much automation previously, but now, with multiple policies, we can prevent attacks effectively.

I want to improve the blocking time; it should be within 10 seconds because 18 seconds allows multiple transactions in the financial industry. I want the blocking time to be better than 18 seconds.

I have been using the solution for the last six months.

Radware DDoS Protection Service  is stable. For the last six months, I have not faced any issues, so it is a good solution.

In my opinion, there is no downtime experienced with Radware DDoS Protection  Service due to external network redundancy.

It is scalable and user-friendly. My team members understand the policies and dashboards easily.

I would rate their customer support positively. Before using Radware, I experienced some delays with another product, but with Radware, we have immediate connections with high-level technical support.

I would rate Radware's customer support an eight out of ten because when we had initial configuration issues, support resolved the issues after a couple of escalations.

Positive

Before Radware DDoS Protection  Service, I didn't have any DDoS solution at all, just manual processes.

The deployment of Radware DDoS Protection Service is very simple. It is user-friendly.

Radware DDoS Protection Service does not require separate maintenance, and there is minimal downtime during maintenance periods, such as during firmware upgrades of the Anti-DDoS tool.

There are five members in my team who work with Radware DDoS Protection Service.

I didn't check pricing of other providers in depth but verified with two, and found Radware to be significantly cheaper compared to F5.

I chose Radware because, as per Gartner, it is recognized in the market as the number one anti-DDoS solution.

I would recommend Radware DDoS Protection Service fully because I have observed improvements in bandwidth speed.

I would rate Radware DDoS Protection Service a ten out of ten.

The main use case for Radware DDoS Protection Service is to protect our websites, mail server, and DNS servers published on the internet.

In terms of that protection, it has been performing very well; I have not noticed specific instances where it stood out.

The best features Radware DDoS Protection Service offers for my organization are the ERT feeds.

The ERT feeds, which are based on Radware intelligence services, have been beneficial to my organization because they block a lot of malicious IP addresses and botnets.

Radware DDoS Protection Service has positively impacted my organization because we are more protected against attacks from the internet.

I think Radware DDoS Protection Service could be improved by enhancing the network analytics features.

I have been using Radware DDoS Protection Service for three years.

In terms of protection, Radware DDoS Protection Service performs very well, and I have not noticed specific instances where it stood out.

I have no experience with the configuration process since a colleague of mine configured the service with the support of Radware.

I find Radware DDoS Protection Service helpful and do not use any other solution.

On a scale of one to ten, I rate Radware DDoS Protection Service a nine because it is very easy to use and very effective as a service. However, there is room for improvement in the network analytics feature.

We primarily use Radware DDoS Protection Service  for ensuring network security and protecting against cyber threats. Our level two support engineers are hands-on with the service, utilizing it for network protection and incident visibility.

The most valuable feature of Radware DDoS Protection Service  is its reporting capability. It allows us to see live attacks and understand the incoming traffic. The support from Radware is also exceptional, as they are always willing to jump on a call to help solve issues and improve our network design. Additionally, the service effectively blocks threats in real time, offering wide protection and preventing false positives.

I suggest improvements to the user interface to make it easier to use and to find the necessary data for analysis. Although the data is present, accessing it for analysis could be more simplified.

I have been using Radware DDoS Protection  Service for all of the year and a half that I have been at the current company.

We have never encountered any issues with stability. There are no problems with lagging or crashing.

Scalability is well-supported by Radware. With their help, we have updated our network design to ensure scalability.

Radware's support is first class. Their responses are quick, and they are very engaging, providing assistance almost instantly when needed.

Neutral

In my previous ISP, I experienced different services, but Radware stands out as a luxury to have.

The initial setup was difficult for me because I didn't receive training. The interface is advanced, and this contributed to the challenges I faced at the beginning. However, with Radware's support, I was able to learn and adapt quickly.

Radware pricing is on the high end, suitable more for larger organizations. They have different options, but I feel it's a costly solution.

I wasn't part of the decision-making process when Radware was chosen at my current company, but in my previous ISP, I had exposure to different services.

I recommend gathering the necessary budget to go with Radware services. The cheapest option may save money initially but could cost more in the long run. I rate the solution 10 out of 10.