Forum Discussion
CVE-2024-21410
Hi THE_BLUE,
to my knowledge F5 does not provide an Attack Signature or a Threat Campaign that protects from CVE-2024-21410.
Extended Protection is supported in environments that use SSL Bridging under certain conditions. That should solve your issue.
IMHO the days of SSL offloading are anyhow over, also internal networks cannot be considered as secure any longer. Therefore, go for SSL Bridging.
KR
Daniel
- THE_BLUEMar 26, 2024Cirrostratus
Thank you for your clarification.
How to enable ssl bridging ? what i should configure in WAF ? , if i enabled https (port 443) from client to WAF with client ssl and enable http (port 80) from WAF to server (pool) and no server ssl profile. Does this achieve ssl bridging ?
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com