F5 Distributed Cloud WAF

Combining F5’s Industry-Leading WAF with an Easy-to-Use SaaS Format

Secure apps everywhere with dramatically simplified operations

Mitigate web app attacks and vulnerabilities with comprehensive security controls and uniform policy and observability via our SaaS-delivered WAF that’s quick to set up and deploy, and easy to manage and scale across any environment.

Secure apps everywhere with dramatically simplified operations

Mitigate web app attacks and vulnerabilities with comprehensive security controls and uniform policy and observability via our SaaS-delivered WAF that’s quick to set up and deploy, and easy to manage and scale across any environment.

Secure app development with DevOps agility and SecOps control

Simplify app security by seamlessly integrating protections into the development process with core security functionality, centralized orchestration, and oversight. Delivering the programmability that DevOps needs combined with the efficacy and oversight that SecOps mandates, enabling faster, more secure application delivery and release cycles.

Reduce time to resolution while defending against known threats and suspicious behavior

Quickly improve visibility and insight across all security events including WAF signatures hit, DoS events, automated and persistent threats, and all other client interactions along with app performance, including intuitive drill-down capabilities. Combining signature and behavioral protection, with a variety of AI and ML techniques, easily identify potentially bad actors and take action even if the client doesn’t trigger any known threat signatures.

Reduce time to resolution while defending against know threats and suspicious behavior

Reduce time to resolution while defending against known threats and suspicious behavior

Quickly improve visibility and insight across all security events including WAF signatures hit, DoS events, automated and persistent threats, and all other client interactions along with app performance, including intuitive drill-down capabilities. Combining signature and behavioral protection, with a variety of AI and ML techniques, easily identify potentially bad actors and take action even if the client doesn’t trigger any known threat signatures.

Comprehensive protection with fewer false positives

Utilize both signature-based and AI/ML based detection techniques with automatic signature tuning to ensure maximum efficacy and reduced SecOps workloads.

Product Overview

Secure apps in the cloud, on-premises, at the edge, or in the F5 Global Network

F5 Distributed Cloud WAF is a next-gen SaaS-based web application firewall that provides signature and behavioral-based threat detection to protect applications wherever they are deployed.

Public clouds

Manage and protect application workloads hosted across clouds, including AWS, Azure, and GCP.

See cloud options ›

On-premises

Manage and protect applications at your data center and edge sites.

See on-premises options ›

F5 global PoPs

Manage and protect application workloads from any of the points of presence (PoPs) on the F5 Global Network.

See Global Network Map ›

Core Capabilities

F5 Distributed Cloud WAF combines signature and robust behavior-based protection for web applications. It acts as an intermediate proxy to inspect app requests and responses to block and mitigate a broad spectrum of risks stemming from the OWASP Top 10, threat campaigns, malicious users, layer 7 DDoS threats, bots and automated attacks, and more.

Robust attack signature engine

Captures Common Vulnerabilities and Exposures (CVEs) plus known vulnerabilities and techniques identified by F5 Labs, including Layer 7 DDoS, threat campaigns, bots, and automated threats.

Advanced behavior engine

Leverages AI/ML to monitor and score client interactions, deciphering intent based on the number of WAF rules hit, forbidden access attempts, login failures, error rates, and more, to help identify an app’s highest priority threats.

Powerful service policy engine

Enables micro segmentation and advanced security at the application layer, utilizing IP reputation and allow/deny lists to block clients with known bad TLS fingerprints, ASNs from suspicious countries, and more.

Automatic attack signature tuning

Easily determines if a signature-identified attack is really a threat, helping reduce the number of false positives.

AI assistant

Simplify delivery and security of distributed apps and APIs using a natural language interface with real-time insights, actionable recommendations, and summary of data reports.

Streamlined set-up and management

Deploy through a simple UI or automate via APIs including best-practice default protections and the flexibility to create custom rules.

Multi-app dashboards

Rich observability via a single dashboard with a 360-degree view of app performance and security events across distributed applications.

Flexible service levels

Choose to deploy and manage on your own or as a managed service—deployed, maintained, and supported 24x7 by certified F5 experts in our SOC.

Platform Support

Broad platform and cloud provider support
Simplifying DevOps and SecOps

Broad platform and cloud provider support

Distributed Cloud Services can be delivered to apps running on any platform on any public/private cloud. Connect and secure apps running in VMs, containers, bare metal or serverless.

Simplifying DevOps and SecOps

F5’s native Terraform provider, vesctl CLI tool, and public APIs deliver the automation needs of app teams. Support for alerting tools (i.e., Opsgenie and Slack) and SIEM tools (i.e., Splunk and Datadog) simplify life of DevOps and SecOps.