Sold by: Check Point Software Technologies
Deployed on AWS
As your organization expands its web applications, generative AI tools, and APIs, the attack surface grows, increasing exposure to sophisticated cyber threats. Check Point WAF for AWS is a prevention-first, AI-powered web application firewall (WAF) solution designed to deliver robust web application, generative and agentic AI, and API security without compromising efficiency or ease of management.
4.4
Overview
The growth of web applications, generative AI, and APIs introduces new vulnerabilities that traditional security solutions struggle to address. Check Point WAF provides web application, generative and agentic AI, and API Protection. The product leverages deep application contextual analysis and an AI-driven machine learning firewall to profile users, monitor application behavior, and detect both known and unknown threats. With over 90% of customers operating in prevention mode and 100% requiring fewer than 10 exception rules, Check Point WAF delivers precise API security while minimizing false positives and simplifying operations.
Advanced Threat Prevention Without Manual Overhead
Check Point WAF provides protection against OWASP Top 10 vulnerabilities, DDoS attacks, API-based threats, and zero-day vulnerabilities - all without requiring ongoing signature updates. Its advanced machine learning firewall capabilities and contextual analysis ensure accurate detection and seamless protection, allowing your security team to focus on strategic priorities rather than managing exceptions.
Optimized for Dynamic Cloud Environments
Built specifically for cloud-native deployments, Check Point WAF integrates natively with AWS services to automate scaling and management. As your applications and APIs evolve, Check Point WAF delivers consistent and reliable web application security without increasing operational overhead. It also supports CI/CD pipeline integration and infrastructure-as-code, enabling API security directly into your development workflows.
Flexible Licensing and Seamless AWS Integration
Check Point WAF is offered as a BYOL (Bring Your Own License) solution, with pricing and entitlements managed directly through Check Point. The underlying AWS infrastructure is billed separately based on standard AWS pricing. This flexibility ensures that CloudGuard aligns with your organizations unique operational and financial needs while maintaining strong integration with AWS services.
Getting Started
To deploy Check Point WAF, click on the "View Usage Instructions" and "Usage Information" below for next steps. For licensing and private offers, contact your Check Point trusted advisor or sales team. AWS infrastructure billing is handled directly through AWS and follows standard pricing models.
Highlights
- AI-Driven Application Security: Protects against both known and unknown cyberattacks including OWASP Top 10 vulnerabilities, DDoS attacks, API threats, AI-driven attacks, and zero-day exploits using AI-powered machine learning. Delivers high efficacy, reduces false positives, and minimizes operational complexity.
- Rapid Deployment and Scalability: Move from setup to active protection within days and gain flexibility for growth for web application, APIs, AI applications and worloads with AWS-native scaling and pay-as-you-go pricing.
- Seamless AWS Integration: Designed for dynamic cloud environments, automates scaling, simplifies management, and integrates natively with AWS services to deliver consistent, reliable web, AI and API security at scale.
Details
Categories
Delivery method
Delivery option
Auto Scaling Group
Single Gateway into existing VPC
Single Gateway into new VPC
Latest version
Operating system
OtherLinux Gaia 3.10
Deployed on AWS
New
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Buyer guide
Gain valuable insights from real users who purchased this product, powered by PeerSpot.
Financing for AWS Marketplace purchases
AWS Marketplace now accepts line of credit payments through the PNC Vendor Finance program. This program is available to select AWS customers in the US, excluding NV, NC, ND, TN, & VT.
Pricing
Pricing and entitlements for this product are managed through an external billing relationship between you and the vendor. You activate the product by supplying a license purchased outside of AWS Marketplace, while AWS provides the infrastructure required to launch the product. AWS Subscriptions have no end date and may be canceled any time. However, the cancellation won't affect the status of the external license.
Additional AWS infrastructure costs may apply. Use the AWS Pricing Calculator to estimate your infrastructure costs.
Vendor refund policy
Please see seller website for refund details.
Custom pricing options
Request a private offer to receive a custom quote.
Legal
Vendor terms and conditions
Upon subscribing to this product, you must acknowledge and agree to the terms and conditions outlined in the vendor's End User License Agreement (EULA) .
Content disclaimer
Vendors are responsible for their product descriptions and other product content. AWS does not warrant that vendors' product descriptions or other product content are accurate, complete, reliable, current, or error-free.
Delivery details
Auto Scaling Group
A number of AppSec instances in an Auto Scaling Group. Load balanced by an ELB.
CloudFormation Template (CFT)
AWS CloudFormation templates are JSON or YAML-formatted text files that simplify provisioning and management on AWS. The templates describe the service or application architecture you want to deploy, and AWS CloudFormation uses those templates to provision and configure the required services (such as Amazon EC2 instances or Amazon RDS DB instances). The deployed application and associated resources are called a "stack."
Version release notes
Additional details
Usage instructions
Navigate to https://portal.checkpoint.com ; if you do not have an existing account, open a new account. Open the main menu (icon is in the top left corner), choose APPLICATION SECURITY under the CloudGuard column, then select Cloud on the left. The Getting Started page will open. After defining the asset, you will be redirected to the Profile page. Note: Obtain the Token for CloudGuard WAF from the Profile page.
Resources
Support
Vendor support
To open a support ticket, send an email to infinity-next-support@checkpoint.com CloudGuard WAF
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Similar products
A single pane-of-glass security management console delivers consistent visibility, policy management, logging, reporting and control across all cloud environments and networks
Check Point Check Point Cloud Firewall is a cloud-native security gateway that delivers automated, advanced threat prevention and multi-layered network security for assets that customers migrate to or store on AWS. Try it free for 30 days.
A single security management console delivers consistent visibility, policy management, logging, reporting and control across all cloud environments and networks
Advanced threat prevention security for AWS and hybrid cloud environments, with Threat Extraction and Threat Emulation, and with GWLB (starting with R81.20)
**Please note: To ensure optimal operations, Check Point recommends a 4 vCores machine size. This provides balanced efficiency and smooth performance, which most customers find ideal for their needs.
Advanced threat prevention security for AWS and hybrid cloud environments, with Threat Extraction and Threat Emulation.
**Please note: To ensure optimal operations, Check Point recommends a 4 vCores machine size. This provides balanced efficiency and smooth performance, which most customers find ideal for their needs.
Customer reviews
Computer Software
Strong Security and Easy Management for Multi-Cloud App Protection
Reviewed on Jun 09, 2026
Review provided by G2
What do you like best about the product?
It’s a solid combination of strong security and easy management. I also appreciate its cloud-native approach, especially the ability to protect applications across different cloud environments.
What do you dislike about the product?
Compared with some competing WAF solutions, the initial setup and policy-tuning process can feel complicated, particularly for teams that are new to web application security. I’ve also seen users note that troubleshooting false positives may take a significant amount of manual effort, and that the user interface can come across as less intuitive than some cloud-native alternatives.
What problems is the product solving and how is that benefiting you?
It protects web applications and APIs from cyber threats that traditional network firewalls can’t effectively stop. It also helps mitigate attacks such as SQL injection, cross-site scripting (XSS), remote code execution, bot attacks, API abuse, and denial-of-service attempts.
Anonymous
Efficient Threat Management, Tough Learning Curve
Reviewed on Jun 09, 2026
Review provided by G2
What do you like best about the product?
I really like the AI engine in Check Point WAF; it's cool how it automatically handles threats, saving us a lot of time by reducing the false positive rate. This automation allows us to block threats efficiently without impacting the user experience, which is great because the team doesn't waste hours chasing down false alarms.
What do you dislike about the product?
It has a pretty steep learning curve, and the initial config is pretty tough as well, and also the price can sting quite a bit. The documentation needs some work.
What problems is the product solving and how is that benefiting you?
I use Check Point WAF to protect web apps and APIs automatically, reducing manual rule tuning and false positives. The AI engine saves us time by handling threats and automating blocking without impacting user experience.
Otniel V.
Check Point WAF Delivers Strong Protection Against Common Web Attacks
Reviewed on Jun 09, 2026
Review provided by G2
What do you like best about the product?
I believe the best advantage of the Check Point WAF solution is that it offers a strong protection against common web attacks (OWASP Top 10, bots, API threats), which are the most common threats I met.
What do you dislike about the product?
There are no many things to say here, but let’s say that the complex initial setup can be challenging, especially for teams without prior Check Point experience. However, there are a lot of tutorials that will help with this, so I wouldn’t say that it is really a thing I don’t like, just that it’s challenging.
What problems is the product solving and how is that benefiting you?
In my team case, Check Point WAF protects our web applications and APIs from common cyber threats while providing centralized visibility and control. This reduces security risks, improves compliance, and saves time on manual security management.
Computer Software
Easy to Use, Affordable, and Accessible for New Users
Reviewed on Jun 04, 2026
Review provided by G2
What do you like best about the product?
It's ease of use and accessibility for new users. Genuinely helpful products with affordable price. Makes sense for enthusiasts and companies. Not much else to say.
What do you dislike about the product?
Nothing in particular, I would continue to use the service if I was doing anything at the moment that required it. It's a good product, nothing comes to mind as a dislike
What problems is the product solving and how is that benefiting you?
It was handling security of my endpoints that i created personally as enthusiast. Benefits me by keeping me assured that my data is safe from attacks.
Syed M.
Strong Web Protection with Easy Management
Reviewed on Jun 02, 2026
Review provided by G2
What do you like best about the product?
I like the strong protection Check Point WAF offers against web application attacks. Its easy-to-manage interface is a big plus for me, as is the real-time threat detection that it provides. I also appreciate the detailed visibility into web traffic and security events, which makes it easier to monitor and respond to potential threats. The documentation was helpful during the initial setup, allowing for a straightforward configuration. Additionally, it integrates well with other security tools, which enhances its effectiveness in our security infrastructure.
What do you dislike about the product?
One area that could be improved is reducing false positives and making policy tuning more straightforward. The reporting and dashboard customization options could also be more flexible and user-friendly.
What problems is the product solving and how is that benefiting you?
Check Point WAF protects web applications from cyberattacks, detects malicious traffic, reduces security risks, and improves application security without affecting user experience.