Not worth. Competitors like Bunny CDN which is much smaller will inevitably have a much worse incident as they grow. Every large company will inevitably have a couple bad incidents so asking “what other large company will never have incidents” is a moronic perspective IMO
The ability of a WAF to respond to an 0day incident is rapid rollout, 100% of endpoints, which is a SPOF no matter whether it's done via a big company or by a distributed system.
Not worth. Competitors like Bunny CDN which is much smaller will inevitably have a much worse incident as they grow. Every large company will inevitably have a couple bad incidents so asking “what other large company will never have incidents” is a moronic perspective IMO
The ability of a WAF to respond to an 0day incident is rapid rollout, 100% of endpoints, which is a SPOF no matter whether it's done via a big company or by a distributed system.
What about open source alternative built with Nginx/OpenResty? I forgot the name but that's the spirit
Fastly (US) and BunnyCDN (EU) are excellent options
Akamai is a decent alternative.
Being down because half the internet is down is an easier sell than being down because you fucked it up yourself.
CrowdSec
AWS Route53, built-in DDoS basic protections, plus AWS WAF (can be expensive depending on your budget).
I've been using Cloudfront Functions to do some of the filtering that a WAF would do. It's quite flexible, but you've gotta figure out your own rules.
AWS WAF has some presets you can use