# Fastly's Web Application and API Security Reviews **Vendor:** Fastly **Category:** [Web Application Firewalls (WAF)](https://www.g2.com/categories/web-application-firewall-waf) **Average Rating:** 4.2/5.0 **Total Reviews:** 30 ## About Fastly's Web Application and API Security Fastly’s AppSec solutions empower teams to mitigate threats and control bots while helping the business move faster, confidently. Protect Your Apps and APIs While Accelerating Growth with Fastly’s Next-Gen WAF, DDoS Protection, Bot Management, API Security, and more. Our solutions are designed to help you stop cyber threats from derailing your biggest moments, accelerate innovation while minimizing new risk, and govern bots without increasing user friction. ## Fastly's Web Application and API Security Pros & Cons **What users like:** - Users commend the **seamless API protection** of Fastly Next-Gen WAF, ensuring easy HTTPS access without extra setup. (2 reviews) - Users appreciate the **API protection** features of Fastly Next-Gen WAF, ensuring their projects remain secure and complaint-free. (1 reviews) - Users are thrilled with the **effective API protection** provided by Fastly Next-Gen WAF, reporting no complaints. (1 reviews) - Users love the **ease of use** of Fastly Next-Gen WAF, enabling seamless HTTPS access without extra setup. (1 reviews) - Users benefit from **easy integrations** , effortlessly accessing websites over HTTPS without additional setup required. (1 reviews) - Protection (1 reviews) - Users appreciate the **effortless SSL encryption** of Fastly Next-Gen WAF, enabling secure access without additional setup. (1 reviews) **What users dislike:** - Users find Fastly Next-Gen WAF to be **expensive** when managing multiple hostnames, leading to significant costs. (1 reviews) - Users are frustrated with the **inflexible pricing** structure for multiple hostnames, facing significant cost barriers. (1 reviews) ## Fastly's Web Application and API Security Reviews ### 1. Perfect API Protection **Rating:** 5.0/5.0 stars **Reviewed by:** Vladimir M. | Senior Integration Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** February 09, 2026 **What do you like best about Fastly's Web Application and API Security?** Protect API for my project! Perfect product no complains **What do you dislike about Fastly's Web Application and API Security?** No any complaints abot product, fast and efficient product **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** API security protection that’s very convenient to use. ### 2. Unreliable Security, Slow Support **Rating:** 0.5/5.0 stars **Reviewed by:** Mason B. | Customer Service, Entertainment, Small-Business (50 or fewer emp.) **Reviewed Date:** November 14, 2023 **What do you like best about Fastly's Web Application and API Security?** It is unable to provide protection, for applications through its poor web application firewall (WAF), and the configuring rules and potential cost increases are difficult. There are also drawbacks related to monitoring data traffic and vulnerabilities to security issues. **What do you dislike about Fastly's Web Application and API Security?** The user interface of Fastly Next Gen WAF is overwhelming and cumbersome to navigate. Its design lacks working making it time consuming to set up and manage rules. The customer support teams responsiveness is also lacking, which makes it difficult to obtain assistance, for refining configurations. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** Fastly Next Gen WAF solves the issue of security by providing poor time analytical reporting. The lack of documentation hinders the optimization of the capabilities provided by the WAF. ### 3. It’s an easy to use and provides the better security to application, API and devops environment **Rating:** 5.0/5.0 stars **Reviewed by:** Shakir K. | Senior Broadcast and streaming engineer, Network operation Centre (NOC), Enterprise (> 1000 emp.) **Reviewed Date:** February 24, 2024 **What do you like best about Fastly's Web Application and API Security?** It's very easy to use. It can handle all types of attack over applications, devops environments and API wherever it's located **What do you dislike about Fastly's Web Application and API Security?** As of now nothing as it's a robust solution. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** After applying the fastly next gen wef you can sleep peacefully as it can handle all of the attacks either it's an injection style or it's a credential stuffing ### 4. SSO integration with high pricing **Rating:** 3.0/5.0 stars **Reviewed by:** Slobodan O. | Advisor, Food & Beverages, Enterprise (> 1000 emp.) **Reviewed Date:** November 09, 2023 **What do you like best about Fastly's Web Application and API Security?** Gen WAF provides Single Sign On (SSO) integration. Having all management tasks, in one place is an advantage for me. But prices are high which is its drawback. It is not good enough for securing our web application. **What do you dislike about Fastly's Web Application and API Security?** There is the availability of documentation and tutorials. This make it difficult for users to fully utilize all the features and capabilities provided by Fastly Next Gen WAF. These limitations potentially stops its reliability in safeguarding against emerging threats. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** The support teams response time for configuration refinements is slow causing delays in issue resolution. Fastly Next Gen WAF monitors the issue of security rules by providing real time analytical reporting but its costly. ### 5. Good SAAS in the Market with advance threat management and application security. **Rating:** 4.0/5.0 stars **Reviewed by:** Avinash A. | Network Security Specialist, Enterprise (> 1000 emp.) **Reviewed Date:** July 24, 2023 **What do you like best about Fastly's Web Application and API Security?** We use Next GEN WAF and BotProtection services in our Company its fast and reliable service when coming to support the product and I really like this compre to the old F5 WAF/ASM. **What do you dislike about Fastly's Web Application and API Security?** The Intigarion between the internal apps would be more ease and open source. also, intigrating the sso would be more reliable and all managment would be in one place. apart from traditional firewall. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** We have huge set of HealthCare data being manged in our data center and we use Fastly to filter the traffic incoming to our webserver. We have used this and saved a lot of code inejections and other http injections into our date center and saved from Vulnerbilites. I have these tagged to solarWinds and helpful to find the support ids and easy fetch to resolve the tagging and blockage part. ### 6. Excellent WAF tool for complete piece of Mind **Rating:** 4.0/5.0 stars **Reviewed by:** Anandb K. | Team Lead, Enterprise (> 1000 emp.) **Reviewed Date:** July 18, 2023 **What do you like best about Fastly's Web Application and API Security?** It provides excellent security to web applications from different types of attack. It provides highly customizable filters that can be configured in no time based on requirement, also it has excellent customer support that will help to define rules/ policy quickly.in my project i have used this to safeguard applications from CORS attacks, SQL injection, DDos etc. **What do you dislike about Fastly's Web Application and API Security?** Pricing can be little con for small projects. As sime complex config changes require tech support help, that will incur more charges. As i have insurance project, pricing is no issue for my client. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** It provides easily configurable filters that helps to define rules & policy quickly. It has complete web security package to safeguard our web application from multiple types of attack. ### 7. Simplifies & Streamlines Our Process **Rating:** 3.0/5.0 stars **Reviewed by:** Hanna m. | SEO Specialist, Small-Business (50 or fewer emp.) **Reviewed Date:** March 21, 2023 **What do you like best about Fastly's Web Application and API Security?** Fastly Origin Connect allows us to use the event monitoring feature and have a full view of our traffic during promotions, site launches, etc. It also allows us to quickly find and troubleshoot any errors with traffic. **What do you dislike about Fastly's Web Application and API Security?** With what I use Fastly for, I do not have any dislikes of the service. It's simple to use and we've never run into any issues with the product. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** Fastly allows us to monitor data and responses in real-time for any of our domains all in one place. I can say that our team is more productive using this service. ### 8. Best suited web application firewall for modern day cyber attacks **Rating:** 5.0/5.0 stars **Reviewed by:** ansuman s. | Security Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** August 28, 2023 **What do you like best about Fastly's Web Application and API Security?** Best in class dashboard suited for detailed display of web application attacks and DDos attacks. **What do you dislike about Fastly's Web Application and API Security?** Nothing as such . Nothing comes to my mind as dislikes. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** The custom signals and the threshold blocking signatures are a great benefit when it comes to weighing the availability of services against security. ### 9. Next-Gen WAF can now be deployed in different ways **Rating:** 4.5/5.0 stars **Reviewed by:** Likitha K. | Training Specialist, Enterprise (> 1000 emp.) **Reviewed Date:** July 16, 2023 **What do you like best about Fastly's Web Application and API Security?** Its easy to deploy and we have control over the data that we share **What do you dislike about Fastly's Web Application and API Security?** Issue with monitoring data traffic and it can be vulnerable for security issues **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** Its providing a web interface which is user friendly. It also allows you to create multiple workspaces ### 10. DDoS Mitigation at Ease **Rating:** 5.0/5.0 stars **Reviewed by:** sumit s. | Network Security Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** February 17, 2023 **What do you like best about Fastly's Web Application and API Security?** Here are some points below that I like about DDoS mitigation: 1. Behavior-based detection for the highest accuracy. 2. Early detection of network abuse and intrusion in peacetime. 3. Most granular SLA - Fastest DDoS attack mitigation. **What do you dislike about Fastly's Web Application and API Security?** Dislike about the DDoS is that the tech support is not supportive, Response time is higher than usual, and Licensing cost is very high compared to other products. So these are some pain points of the customers. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** Inspection and detection are excellent, and they take action per the policy, which makes the environment attack; free implementation is also very smooth; all the points mentioned in the installation guide make for smooth performance. ### 11. This works, but it looks kind of expensive **Rating:** 4.5/5.0 stars **Reviewed by:** Verified User in Computer Software | Small-Business (50 or fewer emp.) **Reviewed Date:** June 20, 2023 **What do you like best about Fastly's Web Application and API Security?** Users of your site will be able to open your website on https without any extra setup on their side. **What do you dislike about Fastly's Web Application and API Security?** If you have more than two hostnames (i.e. domains plus subdomains), you hit kind of a tall wall in pricing. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** It's a devops thing, you need to (1) get a certificate from a certificate authority and (2) set it up on your reverse proxy. Fastly TLS does these two things, and it integrates with your existing Fastly deliver service. Or their new edge compute system. ### 12. Easy to deploy and use via their GUI **Rating:** 5.0/5.0 stars **Reviewed by:** Automann T. | Mid-Market (51-1000 emp.) **Reviewed Date:** March 09, 2023 **What do you like best about Fastly's Web Application and API Security?** The Fastly Next-Gen WAF is relatively easy to setup and implement. Very good customer support (and team) was provided to us and our development team as well. Easy to use GUI as well. **What do you dislike about Fastly's Web Application and API Security?** Haven't had any difficulties so far with our experience using the WAF product. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** We had problems with attaks, but this solution provides attack protection, including DDOS protection. ### 13. Tuning Package provided by Fastly is superb for WAF maintenance & to prevent WAF bypass attacks **Rating:** 4.0/5.0 stars **Reviewed by:** Rithika G. | Cloud Engineer, Information Technology and Services, Enterprise (> 1000 emp.) **Reviewed Date:** April 11, 2022 **What do you like best about Fastly's Web Application and API Security?** Fastly gives top-notch security over our SSDN application as we carry out its deployment specified by our clients. It provides enhanced proxy security features that will mask all our activities from other legitimate traffic. It allows me to establish rules in regards to my customer needs and helps prevent vulnerabilities & maintaining the overall security posture. It also effectively allows me to filter the web traffic so that I can mitigate the potential application layer attacks such as cross-site scripting, SQL injection and other HHTP protocol violations. **What do you dislike about Fastly's Web Application and API Security?** Defining rules is quite challenging and if not properly established, the billing cost will rise. Since we work on various critical applications for our clients, we don't mind the incurring cost as Fastly Cloud security offers excellent WAF protection for our SSDN web applications. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** Fastly cloud security provisions various WAF tuning packages which enhance the overall protection against critical threats & WAF bypass attacks. It's quick to define rules, filter policies & develop its structure using Fastly WAF dashboard & it also ensures the management of request latency for the addition of each rule. It also detects malicious traffic requests which are sent over HTTPS & HTTP and enabling its WAF services does not require any modifications to our on-premise servers or web applications which is convenient. For all additional configuration refinements, we contact the Fastly customer support team and get the WAF provisions done in no time. ### 14. Great visibility with low administrative overhead **Rating:** 5.0/5.0 stars **Reviewed by:** Jason W. | CISO, Mid-Market (51-1000 emp.) **Reviewed Date:** March 26, 2021 **What do you like best about Fastly's Web Application and API Security?** The ease of setup and day-to-day administration is hard to beat. It's really nice to have a tool that doesn't need daily tuning for false positives. **What do you dislike about Fastly's Web Application and API Security?** Having to manually update the agents. Auto-updating agents would remove the only current administration I really have to do, outside of new rule creation. **Recommendations to others considering Fastly's Web Application and API Security:** If you're looking into a WAF, do a PoC of Signal Sciences. Setup time is so low that it's minimal effort and you'll be surprised at the ease-of-use. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** We're securing 100% of externally facing applications with Signal Sciences, with very little tuning necessary on our part. We were in full blocking mode within the first 2 weeks and haven't hit any false positives over the past few years. We've realized a few operational benefits as well, by using SigSci to track HTTP error codes spiking. ### 15. Easy to set up, easy to manage, outstanding visibility **Rating:** 5.0/5.0 stars **Reviewed by:** Antonio V. | Sr Cyber Security Analyst, Mid-Market (51-1000 emp.) **Reviewed Date:** March 09, 2021 **What do you like best about Fastly's Web Application and API Security?** Pre built detection rules, ability to immediately turn on blocking without fear of blocking legitimate traffic, easy to build custom rules and test them, API integration, integration with SIEM tool. Multiple deployment models that fit with our environment allowing complete visibility and protection for all of our applications and API's. Great customer support when called upon quick to respond and work on solving issues **What do you dislike about Fastly's Web Application and API Security?** At this moment I do not have anything negative about the product. Would like to have agents and modules update automatically **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** Small Security team in a web application centric business, Signal Sciences has provided great insights into our applications and allowed us to move to blocking flagged traffic without lengthy time consuming Core Rule Set tuning and also to normalize and understand some of our apps behavior. Flexibility of deployment allows for our team to support new business requirements without sacrificing the security of our applications ### 16. Very powerful WAF; not for novices **Rating:** 4.0/5.0 stars **Reviewed by:** Joshua D. | Lead Software Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** March 09, 2021 **What do you like best about Fastly's Web Application and API Security?** The GUI console is great for observing requests. I often use it over other platforms to monitor requests. The templated rules and new features make the "dislike" of this questionnaire much less relevant today. **What do you dislike about Fastly's Web Application and API Security?** The setup was difficult. It took us a lot of time and energy to get setup. A year ago it was much less capable without a lot more work. Today a lot of those issues are resolved with new features recently released. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** We get targeted by credential stuffing bots constantly. SigSci has helped us cut that down drastically. Previously, we were spending a dozen or so man-hours a week fighting these bots. That included AWS scaling events. Today we mostly forget about the WAF as it does what it needs to do. That's what you want from a security application - to be there when you need it but you not having to babysit it. ### 17. Signal Science Review **Rating:** 4.5/5.0 stars **Reviewed by:** Narasimha Rao S. | Senior Solutions Architect - Portfolio , Enterprise (> 1000 emp.) **Reviewed Date:** December 28, 2021 **What do you like best about Fastly's Web Application and API Security?** Dashboard Onboard Integration with modern tech applications **What do you dislike about Fastly's Web Application and API Security?** Alerts can be more flexible to integrate with pager duty, etc **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** Ingrates easily with Application Security Legacy Secured Model ### 18. RASP / WAF Review **Rating:** 4.5/5.0 stars **Reviewed by:** Jorge Alberto T. | Security Executive, Mid-Market (51-1000 emp.) **Reviewed Date:** February 23, 2021 **What do you like best about Fastly's Web Application and API Security?** Very easy and fast integration with different types of architecture patterns and applications. Support of agents with reverse proxy solutions. No false positives at the moment. No PII/PCI information is stored and ability to redact any sensitive data. Rules are very easy to configure and deploy. Intelligent network that shares malicious IPs, attacks, etc. Which allows to be one step ahead of any attempt against our applications. Integration with SIEMs. **What do you dislike about Fastly's Web Application and API Security?** Lack of AWS Lambda support integration. Lack of communication about releases, roadmap and new functionalities. Static conditions in template rules, should allow more flexibility. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** Avoid technical teams to review false positives. Able to categorize functionalities within the application to have a better understanding of any anomalies and create rules according to security and business needs. Flexibility for deployment for different security problems (agent, reverse proxy, PaaS, etc.) ### 19. Easy-to-configure and developer oriented solution. **Rating:** 4.5/5.0 stars **Reviewed by:** Mario D. | Infrastructure Engineer, Mid-Market (51-1000 emp.) **Reviewed Date:** March 15, 2021 **What do you like best about Fastly's Web Application and API Security?** - It is very easy and safe to operate in blocking mode, so it provides automatic protection out of the box without the need of complex configuration. - It provides a set of rules for dynamic request rates action, that allow to cover multiple DDOS scenarios. **What do you dislike about Fastly's Web Application and API Security?** I haven't found an issue that I dislike so far. **Recommendations to others considering Fastly's Web Application and API Security:** Compare time to implementation and configuration overhead, for us Signal Sciences WAF was the best offer we could find on these key criterias. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** Identifying and blocking common OWASP attacks and protecting our application against DDOS attacks. ### 20. Amazing product. Even better support. A must have service in 2021. **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Sporting Goods | Mid-Market (51-1000 emp.) **Reviewed Date:** May 17, 2021 **What do you like best about Fastly's Web Application and API Security?** It was relatively easy to setup. Some pretty good rules 'out of the box'. Onboarding suppoort team was excellent. **What do you dislike about Fastly's Web Application and API Security?** Nothing I can think of at this point. Pretty straightforward process. **Recommendations to others considering Fastly's Web Application and API Security:** If you are in the market for a secure, well supported, fully featured WAF, this is a great product/service. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** We wanted to make sure that our sites were rock solid from a security perspective. This solution provided peace of mind when it comes to a no nonsense firewall. ### 21. Cost effective solution **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Retail | Mid-Market (51-1000 emp.) **Reviewed Date:** March 05, 2021 **What do you like best about Fastly's Web Application and API Security?** First and foremost, they're cost effective and has better rate limiting features compared to WAF. The interface for creating signals and rules are very simple to use, yet has enough depth for you to cover your use cases. Support has been responsive and very helpful. They make my job easier, you just need to know what you want to do and they can pretty much help you execute. **What do you dislike about Fastly's Web Application and API Security?** Advanced rules requires help from support. We have advanced users that would rather have the autonomy to create and test these rules on their own. It has definitely been getting better. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** The main problem that we use SigSci to solve is ATOs. We have been able to signal and block over 2 million malicious reqs/mo that otherwise would've hit our core infrastructure. ### 22. Very strong and Stable security system with flexible configuration ability **Rating:** 4.5/5.0 stars **Reviewed by:** Anna b. | Web Developer, Enterprise (> 1000 emp.) **Reviewed Date:** September 26, 2020 **What do you like best about Fastly's Web Application and API Security?** The Fastly Cloud Security is from a veru strong platform.It is a world iwde distributed web network which provide the strong infrastructure sercurity sytem to web applications against the vulnerabilities.It enforce the protection at edge for customer who can easily reach the application and perform the functions with cinfidence. **What do you dislike about Fastly's Web Application and API Security?** The Fastly Cloud Security provides the highly protection against many cyber attacks.It is really costly.It needs an expert for the proper implementaion of the solution,as its all features must be utilize to get the best results. **Recommendations to others considering Fastly's Web Application and API Security:** The Fastly Cloud Security is a strong and powerful protector against any web attacks.The edge cloud security satisfy the compliance obligation.It provides the comprehensive logging and descriptive reporting system which helps the critical analysis. Thats why I always recommend to use The Fastly Cloud Security . **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** The Fastly Cloud Security free trial is avialable for the testing .My company has used the services of The Fastly Cloud Security solution. I have realised that it worked very well against the DDos and Bot attacks.It saves the Web application by changing the APIs rules at the real time through active log system. ### 23. Have Strong Security Rules with real time analyical Reporting **Rating:** 4.5/5.0 stars **Reviewed by:** Cody G. | Software Engineer, Enterprise (> 1000 emp.) **Reviewed Date:** September 14, 2020 **What do you like best about Fastly's Web Application and API Security?** The Fastly Cloud Security is a very strong and stable security provider. It also enforces security rules in the system to give the deep insight into the suspicious traffc.It also gives ability to update the configuration for smooth workflow.It is designed to protect the applications against the malicious attacks.Fastly Cloud Security is high bandwidth globally distributed network is developed to accomodate the DDoS attacks. **What do you dislike about Fastly's Web Application and API Security?** The Fastly Cloud Security though a good security provider with the real time approach, however it need the technical IT staff to configure the rules in real time though APIs to active the blocking mode and passive logging mode.It can be over pricing for the company. **Recommendations to others considering Fastly's Web Application and API Security:** The Fastly Cloud Security is built in a very strong egde cloud platform with stable and powerful security system.It also provides the free trial testinf for the checking purpose.The Fastly Cloud Security protects against the injection attacks cross site scripting as well.I think it is highly recommended now a days. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** The Fastly Cloud Security has a very good deffewnce system against all the cyber attacks.It has partnered with PerimeterX to provide the predictive,behaviour based bot detection and mitigation at the network edge.This joint offer save the application with both cache and web content defending againstbot abuse. ### 24. Impressive WAF, highly flexible, fantastic feature set, and effective! **Rating:** 5.0/5.0 stars **Reviewed by:** Mike R. | Enterprise (> 1000 emp.) **Reviewed Date:** May 15, 2020 **What do you like best about Fastly's Web Application and API Security?** Signal Sciences was incredibly easy to install and instrument in to our application. In a battery of performance tests we determined that the WAF had a statistically negligible impact which was great to see. In terms of effectiveness, it did a great job at catching all attacks we were sending at it. As a vendor, Signal Sciences has been a great partner for us. They're quick to support us should we encounter issues of any kind. We have a fair number of architectures of which Signal Sciences supported all of them and more. It is highly flexible and can support a number of different deployment methods. Keeping any components updated are a breeze as well. **What do you dislike about Fastly's Web Application and API Security?** I don't have any dislikes of the product. Overall Signal Sciences has been one of the best WAFs I've ever worked with. **Recommendations to others considering Fastly's Web Application and API Security:** You'll be pleasantly surprised with Signal Sciences. I have worked with a lot of different WAFs and this was hands down the best WAF I've ever worked with. I highly recommend pursuing them as your WAF solution. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** Historically our applications didn't have a WAF, however, with the modern threat landscape and the burgeoning number of attacks we prioritized WAF as a key security tool. The key problem we were solving was the lack of solid web security defenses. Our threat detection abilities have increased greatly since deploying this tool in addition to the needed protections we were previously missing. ### 25. Great Product **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Biotechnology | Mid-Market (51-1000 emp.) **Reviewed Date:** March 05, 2021 **What do you like best about Fastly's Web Application and API Security?** The proactive nature of the protection it provides **What do you dislike about Fastly's Web Application and API Security?** The agents and web server modules update process **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** Enhanced visibility in web requests, protecting sites form malicious attempts ### 26. Signal Sciences WAF **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Sports | Mid-Market (51-1000 emp.) **Reviewed Date:** March 05, 2021 **What do you like best about Fastly's Web Application and API Security?** Ease of deployment. Able to configure Full Blocking mode in days not weeks. **What do you dislike about Fastly's Web Application and API Security?** I am not able to provide any downsides as I have not experienced any. New features should be communicated in the portal. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** Securing critical production and staging applications. With little administrative effort been able to configure full blocking mode and geo block access at the application level. ### 27. Loving SigSci **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Non-Profit Organization Management | Mid-Market (51-1000 emp.) **Reviewed Date:** May 17, 2020 **What do you like best about Fastly's Web Application and API Security?** Speed to implement, insights from the tool, progressive product roadmap, support, and of course the protection it affords our business. **What do you dislike about Fastly's Web Application and API Security?** Older versions required an agent to be maintained, although the new cloud version has done away with this. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** Originally we needed a solution that would work with our architecture - spent months trying to integrate some of the traditional WAF products without success, we had SigSci up and running in a day. Simple to use WAF. ### 28. Better than most WAFs but not "next-gen" **Rating:** 1.5/5.0 stars **Reviewed by:** Verified User in Security and Investigations | Small-Business (50 or fewer emp.) **Reviewed Date:** January 23, 2019 **What do you like best about Fastly's Web Application and API Security?** Compared to other WAF products the UI and general functionality is more comprehensible. Out of the box Signal Sciences works and does detect basic injection attacks. **What do you dislike about Fastly's Web Application and API Security?** Doing advanced config is not easy, lots of UX problems and deciding which install path to take in the first place was very confusing. Was also surprised about all the extra charges, starting with a hefty setup fee and trying to push a multi year deal on us after a short pilot phase. **Recommendations to others considering Fastly's Web Application and API Security:** Expect to have time to setup and configure the product. It seems easier, and is, than most WAFs but still requires hand holding and UX is not always clear. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** Increasing security on our web application. Getting some visibility into attacks and gaining PCI compliance. ### 29. Great WAF With Tons of Potential **Rating:** 5.0/5.0 stars **Reviewed by:** Verified User in Human Resources | Mid-Market (51-1000 emp.) **Reviewed Date:** August 16, 2018 **What do you like best about Fastly's Web Application and API Security?** It's one of the few WAFs that you can easily put into block mode without the risk of dropping legitimate traffic. The company is new which means lot's of engineering ideas and enhancements are implemented. **What do you dislike about Fastly's Web Application and API Security?** Since the company is so new, some expected features just aren't there. They are very open to enhancement requests. **Recommendations to others considering Fastly's Web Application and API Security:** Give it a try. Though they are a cloud service, all processing is done on your servers. Only analytical data is sent back to them. You can redact anything you want. No Request payloads ever make it to their servers. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** We are security our web application. We never had the visibility into web attacks that we do now. It's a great product! ### 30. WAF that actually works! **Rating:** 4.0/5.0 stars **Reviewed by:** Verified User in Financial Services | Enterprise (> 1000 emp.) **Reviewed Date:** May 23, 2018 **What do you like best about Fastly's Web Application and API Security?** Signal science is very flexible with its deployment strategy and the insight on the web traffic of your application is tremendous. **What do you dislike about Fastly's Web Application and API Security?** Signal science agent updates, i wish agent updates could be automated and we don't have to update it often. **What problems is Fastly's Web Application and API Security solving and how is that benefiting you?** The visibility it provides on web traffic is amazing. Features like 24 hour block and thresholds on request are great - [View Fastly's Web Application and API Security pricing details and edition comparison](https://www.g2.com/products/fastly-s-web-application-and-api-security/reviews?section=pricing&secure%5Bexpires_at%5D=2026-05-14+08%3A57%3A50+-0500&secure%5Bsession_id%5D=94483774-f459-4207-ada6-a999d6ecddb8&secure%5Btoken%5D=c3f497a0388b370b3fef3f34e033ad44a12060cf20ddb70350d7c33c26f82512&format=llm_user) ## Fastly's Web Application and API Security Integrations - [AWS Cloud Development Kit (AWS CDK)](https://www.g2.com/products/aws-cloud-development-kit-aws-cdk/reviews) ## Fastly's Web Application and API Security Features **Administration** - Content Delivery - Dashboard & Reporting - Alerting **Analysis** - Logging and Reporting - Issue Tracking - Security Monitoring **Management** - IT Alerting - Network Capacity - Logging - API / Integrations **Activity Monitoring** - Usage Monitoring - Database Monitoring - API Monitoring - Activity Monitoring **API Management ** - API Discovery - API Monitoring - Reporting - Change Management **Management** - Multicloud Management - DLP Configuration - Dynamic Scaling - Policy Enforcement **Threat Detection and Protection - Client-Side Protection** - Continuous Scanning - Signature-Based Detection - Threat Protection - Risk Prioritization - Heuristic Analysis **Orchestration** - Asset Management - Security Workflow Automation - Deployment - Sandboxing **Cloud Visibility** - Data Discovery - Cloud Registry - Cloud Gap Analytics **Risk Analysis** - Blacklist and Whitelist - Vulnerability Assessment - Security Auditing **Controls** - Application-Layer Controls - Traffic Controls - Network Controls **Protection** - DNS Protection - Website Protection - Infrastructure Protection **Security** - Compliance Monitoring - Risk Analysis - Reporting **Security Testing** - Compliance Monitoring - API Verification - API Testing **Monitoring** - Data Center Networking - Multicloud Visibility - Anomaly Detection **Data Security - Client-Side Protection** - First-Party JavaScript Obfuscation - Browser Security - Encryption - Obfuscation - Data Loss Prevention (DLP) - Third-Party Security - Endpoint Security **Information** - Proactive Alerts - Malware Detection - Intelligence Reports **Security** - Data Security - Data loss Prevention - Security Auditing **Threat Protection** - Firewall - DDoS Protection - Malware Detection - Malware Removal **Functionality** - API / Integrations - Extensibility - Bot Traffic **Resolution** - Attack Mitigation - Network Monitoring - Security Monitoring - Anomoly Detection - Resolution Automation **Administration** - Security Automation - Security Integration - Multicloud Visibility **Security Management** - Security and Policy Enforcement - Anomoly Detection - Bot Detection **Protection** - Firewall-as-a-Service - Cloud Application Brokerage - Web Gateway - Adaptive Access Control **Logging and Monitoring - Client-Side Protection** - Event Logging - Reporting - Real-Time Monitoring **Personalization** - Endpoint Intelligence - Security Validation - Dynamic/Code Analysis **Identity** - SSO - Governance - User Analytics **Generative AI** - AI Text Summarization **Generative AI** - AI Text Summarization **Agentic AI - Cloud Security Monitoring and Analytics** - Autonomous Task Execution - Proactive Assistance - Decision Making **Generative AI** - AI Text Summarization - Generate Attack Scenarios - Generate Threat Detection Rules - Generate Threat Summaries **Agentic AI - Threat Intelligence** - Autonomous Task Execution - Multi-step Planning - Proactive Assistance - Decision Making ## Top Fastly's Web Application and API Security Alternatives - [Cloudflare Application Security and Performance](https://www.g2.com/products/cloudflare-application-security-and-performance/reviews) - 4.5/5.0 (577 reviews) - [Wiz](https://www.g2.com/products/wiz-wiz/reviews) - 4.7/5.0 (773 reviews) - [HAProxy](https://www.g2.com/products/haproxy/reviews) - 4.7/5.0 (883 reviews)