FIPS validated F5 load balancer to work with AWS ELBs

Question

Hi,
We recently found out that the AWS ELBs are not FIPS 140-2 validated.
We plan on continuing to use ELBs for their AZ failover, ASG etc features but we now need to come up with a solution where the public end-points for our apps would be FIPS validated.
As a note, our entire infrastructure is on AWS. 
Is there an F5 solution that we can stand it up in front of ELBs and have it accept external connections and route those back to ELBs? Also noteworthy is that the ELBs may change their IPs over time so this solution will need to be handle that without causing traffic disruption.&nbsp;
Thank you.&nbsp;

jg · Answer

This would seem easy to do: Define the ELB hostname as the fqdn pool member of your F5 virtual server fronting the user. See Configuring the BIG-IP System to Auto-Populate Pools.&nbsp;
There are currently a couple of bugs with this functionality, though. But you can always use an irule to get around them.&nbsp;

Forum Discussion

FIPS validated F5 load balancer to work with AWS ELBs

Recent Discussions

APM with EntraID as idP / request signed

Should config via cli rather than gui?

Background Tasks

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

FIPS license and fipsutil info

POC: Validate JWT with iRule

Active/Active load balancing examples with F5 BIG-IP and Azure load balancer

Load Balancing TCP TLS Encrypted Syslog Messages

Transparent load balancing in Azure, Part 2

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS