For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

satyricon_81764's avatar
satyricon_81764
Icon for Nimbostratus rankNimbostratus
Oct 25, 2013

Integrating Radware DefensePro with F5 LTM with SSL

Hi, we are already using F5 LTM for loadbalancing and SSL termination with a couple of webservers. We want to add an IPS / Attack Mitigater to our setup. As we have nearly all traffic ssl encrypted, the IPS system has to see the unencrypted traffic, but not all IPS systems are able to decrypt by itself. does someone have an idea how to integrate such an IPS in this scenario, maybe be terminating the traffic on the LTM, forwarding the decrypted packets to the ips and reentering on the F5 again?

 

thanks for all tips.

 

regards

 

Markus Reichl

 

deployment
design

3 Replies

  • What_Lies_Bene1's avatar
    What_Lies_Bene1
    Icon for Cirrostratus rankCirrostratus
    Oct 25, 2013
    I've definitely seen a good article on this but can't find it right now. Try doing a search for IDS or IPS (on the whole of DC, not just the forums) and see what comes up.
  • Bart_7972's avatar
    Bart_7972
    Icon for Nimbostratus rankNimbostratus
    Oct 28, 2013

    Hi,

     

    https://devcentral.f5.com/tech-tips/articles/divert-unencrypted-traffic-through-an-ips-with-local-traffic-manager.UgIdn21a_FU

     

    I have used it in production with Defense Pro, works very well!

     

    Regards, Bart

     

    • satyricon_81764's avatar
      satyricon_81764
      Icon for Nimbostratus rankNimbostratus
      Oct 29, 2013
      Thanks Bart, looks like it can help a lot. i'll set up a lab-environment this way... Markus