Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

THE_BLUE's avatar
THE_BLUE
Icon for Cirrostratus rankCirrostratus
Feb 10, 2024

SMS Gateway and BIGip

deos f5 bigip support securing SMS gateway? ihave sms gateway and i want to secure it with WAF . if yes, then it will follow normal integration? 
application delivery
KeesvandenBos's avatar
KeesvandenBos
Icon for MVP rankMVP
Feb 12, 2024

F5 WAF does support API protection. So if you have the swagger file of the API of the SMS gateway, WAF can protect it.

Cheers,

Kees

  • THE_BLUE's avatar
    THE_BLUE
    Icon for Cirrostratus rankCirrostratus
    Feb 13, 2024

    when user connect to wifi, there will be a page where they enter username and mobile number Then, they should receive an OTP.so it is practical to run this with APM instated of WAF(ASM)? 

    • KeesvandenBos's avatar
      KeesvandenBos
      Icon for MVP rankMVP
      Feb 13, 2024

      Depending on where the page for username and mobile number retrieval is running and what the action is after successful authentication with OTP.
       

    • Lucas_Thompson's avatar
      Lucas_Thompson
      Icon for Employee rankEmployee
      Oct 08, 2024

      To add a little to this:

       

      Captive portal type use cases can be accomplished with SWG or APM. See this article about how to set it up:

      https://clouddocs.f5.com/training/community/iam/html/archived/class3/module1/Lab06.html

       

      If you want to man-in-the-middle (spy) SSL on the captive portal users for auditing or monitoring, you can also do that with a combination of SSL Orchestrator and SWG. 

      SWG by itself does not man-in-the-middle the user connections.