APM behind Third Party WAF

Question

hi Folks,i would like to ask about, if it possible to put the APM behind third party external WAF (L3 WAF)? how will the traffic flow from external users to internal network? is there any guide to explain the needed configuration?&nbsp;thanks all.

nikoolayy1 · Answer

I don't word directly for F5 bt everyone from F5 will tell you to use ASM on the same F5 device if there is enough CPU and memory. There can't be a guide for how F5 APM will work with concurrent vendor, as there as many waf vendors nowadays as there are stars in the sky :)

hawary · Answer

thanks Nikoolayy1,the idea is that i'm not using F5 WAF, i'm using Sophos WAF and it working, i'm not sure it will work or not.

daniel_wolf · Answer

As I understand you want to use Sophos in L3 mode, right?

You can search (google) for F5 reference architectures. You will find a couple of diagrams that actually recommend to have a L3/4 network firewall, like F5 AFM, in a separate tier in front of APM or ASM/AWAF, in order to protect from flooding attacks for example.

This link is a bit dated, but is close to your scenario: The F5 DDoS Reference Architecture - Enterprise Edition.

Forum Discussion

APM behind Third Party WAF

Recent Discussions

F5 DNS Generic Host

How do I create a traffic log for two different route domains?

Http / https health monitor issue

In Radius auth, how to allow second attempt of token input when the first input is incorrect?

Need Urgent BIGIP Trial License and VM Image

Related Content

Increased Security With First Party Cookies

Traffic Steering with 3rd party Policy Manager (Layered Architecture with Explicit Proxy)

DNS resolution against 3rd party non balancing host.

3rd party SFP

Addressing Security Loopholes of Third-Party Browser Plug-ins - UPDATED FEBRUARY 2017

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS