Forum Discussion

GVIJ_208206

Nimbostratus

Jun 25, 2015

Reverse Proxy Functionality when WSS is used

Hi, As a part of our solutions proposal we are including F5 to be placed in the DMZ to act as a reverse proxy for the server residing in the customers internal network. Our server application Im...

application delivery

BIG-IP Access Policy Manager (APM)

Nimbostratus

Jul 15, 2015

Followup question.

Since F5 would be placed in the customers DMZ network and acting as a proxy (HTTPS/WebSocket) between the Internet client and the Internal application server, are there any major security risks associated with WebSocket connection between Client and the Server?

The Internal application is built on JDK and if exploited via WebSocket connection, could allow the hacker to access the program flow and modify the code. This is the customer concern.

If there is any best practice documentation for F5 configuration to protect against this kind of WebSocket vulnerability, please let me know

Thank you

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Reverse Proxy Functionality when WSS is used

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

How can I get started with iCall

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Related Content

Troubleshooting Lync/Skype for Business Reverse Proxy

F5 Reverse Proxy setup

Reverse Proxy With Basic SSO

Simple Reverse Proxy with iRules

iRule procs (functions)

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS