OPSWAT Integration with F5

Question

Hi Experts,Could you please help me with below points and what are the possibilities. Thanks.What type of application or content-type supported by WAF, before it send upload file requests towards OPSWAT servers for scanning.Any other way for capturing traffics from WAF to OPSWAT servers for those specific requests, forwarded for upload file scanning, apart from tcpdump?WAF can forward upload file for scanning even in if it learning mode?

lucas_thompson · Answer

For inbound use cases, here is an article that talks about how to configure MetaDefender ICAP to scan incoming SSL-offloaded (BIG-IP has the serverssl cert and key and talks HTTP to the pool member) web traffic:
https://docs.opswat.com/mdicap/integrations/f5-big-ip-asm--waf-
&nbsp;
For outbound use cases where BIG-IP has to un-wrap the SSL (BIG-IP does not have the serverssl cert and key), we have a module called "SSL Orchestrator" that can man-in-the-middle outbound connections and utilize a variety of ICAP or inline-HTTP servers for content scanning.

liefzimmerman · Answer

adeelshahzad - if your question was answered please consider Mark as Solution to help future community members. Thanks.

Forum Discussion

OPSWAT Integration with F5

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

Integrating OPSWAT MetaDefender With F5 SSL Orchestrator

Integrating OPSWAT MetaDefender with F5 Advanced WAF & BIG-IP ASM

Implementing SSL Orchestrator with OPSWAT MetaDefender

BIG-IP and OPSWAT Together Implement DLP for AI Traffic

Integrating SSL Orchestrator with McAfee Web Gateway-Transparent Proxy

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS