For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

THE_BLUE's avatar
THE_BLUE
Icon for Cirrostratus rankCirrostratus
Feb 11, 2024

SMS Gateway and BIGip

deos f5 bigip support securing SMS gateway? ihave sms gateway and i want to secure it with WAF . if yes, then it will follow normal integration? 
application delivery
KeesvandenBos's avatar
KeesvandenBos
Icon for MVP rankMVP
Feb 12, 2024

F5 WAF does support API protection. So if you have the swagger file of the API of the SMS gateway, WAF can protect it.

Cheers,

Kees

THE_BLUE's avatar
THE_BLUE
Icon for Cirrostratus rankCirrostratus
Feb 13, 2024

when user connect to wifi, there will be a page where they enter username and mobile number Then, they should receive an OTP.so it is practical to run this with APM instated of WAF(ASM)? 

  • KeesvandenBos's avatar
    KeesvandenBos
    Icon for MVP rankMVP
    Feb 13, 2024

    Depending on where the page for username and mobile number retrieval is running and what the action is after successful authentication with OTP.
     

  • Lucas_Thompson's avatar
    Lucas_Thompson
    Icon for Employee rankEmployee
    Oct 08, 2024

    To add a little to this:

     

    Captive portal type use cases can be accomplished with SWG or APM. See this article about how to set it up:

    https://clouddocs.f5.com/training/community/iam/html/archived/class3/module1/Lab06.html

     

    If you want to man-in-the-middle (spy) SSL on the captive portal users for auditing or monitoring, you can also do that with a combination of SSL Orchestrator and SWG. 

    SWG by itself does not man-in-the-middle the user connections.