Sold by: Barracuda Networks
Deployed on AWS
Free Trial
The Barracuda CloudGen WAF provides proven application security and data loss prevention for your applications on AWS. The Barracuda CloudGen WAF has achieved AWS Security competency certification and is available via metered usage-based billing.
Overview
The Barracuda CloudGen WAF detects all inbound web traffic and blocks SQL injections, cross-site scripting, malware uploads, volumetric & application DDoS, or any other attacks against your web applications. It also inspects the HTTP responses from the configured back-end servers for data loss prevention (DLP). The integrated access control engine enables administrators to create granular access control policies for Authentication, Authorization & Accounting (AAA), which gives organizations strong authentication and user control. The onboard L4/L7 load balancing capabilities enable organizations to quickly add back-end servers to scale deployments as they grow. Its application acceleration capabilities, including SSL offloading, caching, compression, and connection pooling, ensure faster application delivery of web application content. The Barracuda CloudGen WAF also supports autoscaling and bootstrapping.
NOTE: Only AMIs with version 10.x or higher version support the Elastic Network Adapters (ENA).
Highlights
- Detects and blocks SQL injections, cross-site scripting, malware uploads, volumetric & application DDoS, or any other attacks against your application. Authentication and access control gives organizations strong authentication and user control.
- Scans outbound traffic to detect sensitive data, and can either mask or block the information from being leaked out.
- Application acceleration capabilities, including caching, compression, and connection pooling for faster application delivery of web application content.
Details
Sold by
Categories
Delivery method
Delivery option
64-bit (x86) Amazon Machine Image (AMI)
Autoscaling Cluster Deployment using AWS CFT
Latest version
Operating system
OtherLinux 2.4.9
Deployed on AWS
Unlock automation with AI agent solutions
Fast-track AI initiatives with agents, tools, and solutions from AWS Partners.
Features and programs
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Free trial
Try this product free for 30 days according to the free trial terms set by the vendor. Usage-based pricing is in effect for usage beyond the free trial terms. Your free trial gets automatically converted to a paid subscription when the trial ends, but may be canceled any time before that.
Pricing is based on actual usage, with charges varying according to how much you consume. Subscriptions have no end date and may be canceled any time. Alternatively, you can pay upfront for a contract, which typically covers your anticipated usage for the contract duration. Any usage beyond contract will incur additional usage-based costs.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Dimension | Cost/hour |
|---|---|
t2.large Recommended | $1.318 |
m5.large | $1.318 |
m4.large | $1.318 |
t2.xlarge | $1.758 |
t3.xlarge | $1.758 |
c5.large | $1.318 |
c5.xlarge | $1.758 |
c4.large | $1.318 |
m3.medium | $1.038 |
c5.2xlarge | $2.996 |
Vendor refund policy
Terminate the instance at any time to stop incurring charges.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Additional details
Usage instructions
- By default, the Barracuda Web Application Firewall web interface listens on HTTP/8000 and HTTPS/8443 ports so make sure these ports are added in the Inbound Rule of the security group which is associated with the Barracuda Web Application Firewall VM.
- Allow a few minutes before taking any further actions in the EC2 Portal after deploying the Barracuda Web Application Firewall. During this time the Barracuda Web Application Firewall is getting provisioned and licensed.
- Access the Barracuda Web Application Firewall using the associated Public IP/Public DNS with port 8000 over HTTP (i.e. http://<public IP>:8000)
- You will see the blue loading screen for some time and eventually you will be presented with the End User License Agreement (EULA).
- Click 'Accept' button and you will be redirected to the login page.
- Log in as 'admin' to begin configurations. Your initial password is the EC2 instance ID and can be changed later from Basic > Administration page.
For Deployment Guide and other instructions visit the Barracuda campus at https://campus.barracuda.com/product/webapplicationfirewall/article/WAF/AWS/
Support
Vendor support
Support Hours: Basic Support Hours: 8:00 AM - 5:00 PM PST, Monday through Friday.
Email and Phone Support offered 24x7 without any phone trees. You will actually speak to a live person. Please have your AWS Account ID available when you contact Barracuda Support; it is required for the support technican to assist you.
Support Phone Numbers: North America - 408 342 5300 Europe - +44 (0) 1256 300 102 Australia - +612 8019 7254 China - +86 400 720 8200 Japan - +81 3 5436 6236 India - +91 804 904 8600 Germany, Austria, Switzerland - +43 (0) 508 100 800
Support Website: https://www.barracuda.com/support
Support Email: support@barracuda.com
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Updated weekly
By Barracuda Networks
By Check Point Software Technologies
By Juniper Networks
Top
100
In Network Infrastructure, Security
Top
10
In Log Analysis, Network Infrastructure
Top
10
In Migration
Sentiment is AI generated from actual customer reviews on AWS and G2
Functionality
Ease of use
Customer service
Cost effectiveness
Positive reviews
Mixed reviews
Negative reviews
AI generated from product descriptions
Web Traffic Protection
Detects and blocks SQL injections, cross-site scripting, malware uploads, volumetric and application DDoS attacks
Data Loss Prevention
Inspects HTTP responses from backend servers to prevent sensitive data leakage
Access Control Management
Integrated access control engine enables granular authentication, authorization, and accounting policies
Load Balancing
Onboard L4/L7 load balancing capabilities for scaling backend server deployments
Application Performance Optimization
Supports SSL offloading, caching, compression, and connection pooling for accelerated web application content delivery
Network Traffic Inspection
Inspects traffic entering and exiting private subnets in VPC ("North-South") and between VPCs ("East-West")
Advanced Threat Prevention
Provides multi-layered security capabilities including firewall, IPS, threat emulation, and threat extraction with advanced catch rates
Cloud Infrastructure Integration
Supports infrastructure-as-code tools like Terraform and Ansible, dynamically adapts security policies based on cloud metadata
Security Protocol Coverage
Comprehensive security features including Data Loss Prevention, application control, IPsec VPN, URL filtering, antivirus, and anti-Bot protection
Cloud Service Compatibility
Integrates with AWS services including Gateway Load Balancer, AWS Security Hub, VPC Ingress Routing, AWS Traffic Mirroring, and AWS Transit Gateway
Network Security Services
Advanced firewall with intrusion detection and prevention (IPS), application visibility and control through AppSecure
Cloud Routing Capabilities
High-performance cloud-grade routing with IPsec and full mesh VPN termination services
Cloud Service Integrations
Native integrations with AWS services including Elastic Load Balancer, CloudWatch, Security Hub, and Amazon GuardDuty
Multi-Instance Support
Supports multiple AWS instance types with Elastic Network Adapter and SWRSS to utilize all available vCPUs
Gateway Load Balancing
Layer 3 gateway and Layer 4 load balancer capabilities providing superior scalability and network resilience
Standard contract
No
No
No
Customer reviews
5
1 ratings
1 AWS reviews
|
10 external reviews
Star ratings include only reviews from verified AWS customers. External reviews can also include a star rating, but star ratings from external reviews are not averaged in with the AWS customer star ratings.
Hadar Eshel
Easy to install platform with valuable policy management features
Reviewed on Feb 23, 2024
Review provided by PeerSpot
What is our primary use case?
We use the product for securing email systems, protecting websites, and safeguarding web-based applications and portals.
What needs improvement?
One significant area for improvement in Barracuda WAF-as-a-Service lies in its market positioning and pricing strategy. Additionally, it could operate in a local data center. This limitation hinders its adoption in regions with strict data regulations.
For how long have I used the solution?
We have been using Barracuda WAF-as-a-Service for three years.
What do I think about the stability of the solution?
I rate the platform’s stability an eight and a half out of ten.
What do I think about the scalability of the solution?
I rate the platform’s scalability an eight out of ten.
How are customer service and support?
The technical support services could be faster and more professional.
How was the initial setup?
Barracuda WAF-as-a-Service is easy to install and maintain. However, it is granular and might be complicated for multiple applications. The deployment time depends on the specific application and the complexity of the number of domains.
What's my experience with pricing, setup cost, and licensing?
The product is expensive but it offers flexible pricing. It could be affordable.
Which other solutions did I evaluate?
Barracuda utilizes Azure CDN instead of having its proprietary CDN, which may be considered a limitation when compared to competitors like Imperva's Incapsula. However, we decided to go for Barracuda for better pricing and the simplicity of basic functionality, especially for medium-sized clients who may prioritize these aspects over advanced features.
What other advice do I have?
Barracuda WAF-as-a-Service excels in threat detection and mitigation, with features including robust bot mitigation in combination with Microsoft CDN, and the effectiveness of its Advanced Threat Protection (ATP) service. It provides an ease of policy management.
I rate it a nine out of ten.
KiranSyam
A product that offers great bot protection feature with a need to improve its stability
Reviewed on Dec 20, 2023
Review provided by PeerSpot
What is our primary use case?
I use the solution in our company to protect our website.
How has it helped my organization?
The product has improved my organization due to the protection it offers to our company's website.
What is most valuable?
The product's bot protection feature is valuable for our company. I cannot comment on anything else in the product that is valuable to our company since all its other features are common. With the product, our company doesn't face any issues. Our company's website had a contact form. Normally, my company used to face issues with bots that filled out the form and sent a masked email address to our information mailbox, which was one of our concerns because we were not getting genuine inquiries from our forms, but after the implementation of the product, we were okay.
What needs improvement?
My company had faced some downtime or an outage twice with Barracuda WAF-as-a-Service due to backend problems. The stability of the product is an area of concern where improvements are required.
I don't know much about what additional features are required in the product's future releases since I think it has almost all users. One feature I want in the solution stems from the fact that there are almost 17 applications protected in our company with the help of Barracuda WAF-as-a-Service. If I need to block one IP address for all 17 applications together, it is not possible, and I need to block the IP address on each application separately, making it a time-consuming process. It would be great if the product allows users to block an IP address for all the applications in an environment in one go rather than having to block the IP address separately for each application.
For how long have I used the solution?
I have been using Barracuda WAF-as-a-Service for almost two years. My company is an end user of the solution.
What do I think about the stability of the solution?
My company had faced a downtime of four to five hours with the solution, after which we again faced a downtime of around three hours with the product because of the tool's backend issues. Stability-wise, I rate the solution a four out of ten.
What do I think about the scalability of the solution?
The product's scalability is fine since my company initially had ten licenses for the product, and we could scale up to twenty. Scalability-wise, I rate the solution a seven out of ten.
It doesn't matter how many users use the product in our company since the solution is mainly meant to protect our company's 17 applications.
How are customer service and support?
The solution's technical support is very good. I rate the technical support a seven out of ten.
How would you rate customer service and support?
Neutral
How was the initial setup?
I rate the initial setup phase a five on a scale of one to ten, where one is a difficult setup phase, and ten is an easy setup process. The product's initial setup phase was not a nice process. As I was not an expert with the product during its setup phase, some time was required to ensure coordination between our company's website and product vendor.
The solution is deployed on the cloud.
The product's deployment process took almost three months to complete.
There is a need to deploy the DNS server addresses to Barracuda WAF-as-a-Service, and in each website, 301 and redirection should be configured, after which all the other policies are to be enabled manually for each application. In our company, we have 17 applications, and we need to manually enable the policies for each application separately.
What's my experience with pricing, setup cost, and licensing?
I rate the product's price a five on a scale of one to ten, where one is low, and ten is high. There are no additional costs to be paid apart from the standard licensing fees attached to the solution.
Which other solutions did I evaluate?
Against Barracuda WAF-as-a-Service, I think my company had tried two products, one of which was Imperva, but I don't remember the name of the Other product. My company chose Barracuda WAF-as-a-Service over Imperva since the latter was too costly compared to the former solution.
What other advice do I have?
I don't know what to say about the product after seeing the solution have a downtime twice in a span of two months. I cannot recommend the product to others.
If I consider the solution's downtime, because of which it is not possible for the product to offer its features to support backend processes, I rate the overall product a six out of ten.
raffi
the WAF with amazing pre and post deployment support
Reviewed on May 15, 2018
Review from a verified AWS customer
We have evaluated a few other WAF solutions⦠and our overall experience with the others compared to Barracuda re-enforces our final decision to go with BarracudaÃ�¢ÂÂs WAF.
Here is why BarracudaâÂÂs WAF stood outâ¦
They have a knowledgeable and capable onboarding team and process.
They have a responsive support team.
Their http://campus.barracuda.com site and the built-in online help docs (accessible from the WAF) are well written and actionable.
Barracuda's WAF helped us secure more instances on AWS.
Within minutes, the solution was easily deployed using the AWS Marketplace and analyzing traffic in passive mode. Once the necessary changes were applied, the WAF was in production mode and protecting traffic.
Their WAF solution also includes a geo-filtering feature that allowed us to decommission an instance from an alternate provider.
Venugopal Reddy G.
Currently We are using it
Reviewed on Jan 25, 2017
Review provided by G2
What do you like best about the product?
User Friendly Web Application with all categories.
What do you dislike about the product?
Bit complex navigation for some items but ok to use.
What problems is the product solving and how is that benefiting you?
good in aspects of its work.
Christina H.
Barracuda Firewall Review
Reviewed on Nov 30, 2016
Review provided by G2
What do you like best about the product?
My favorite aspect about this software is that it has the capability to protect all of your devices within the same program.
What do you dislike about the product?
There is nothing I dislike about this software at this point. I think it is fast, affordable and easy to use.
What problems is the product solving and how is that benefiting you?
It is making us more comfortable that we are not being hacked or losing any of our private information in cyberspace.
Recommendations to others considering the product:
I would definitely try using this software over anything else on the market.