Help
Technical Articles
F5 SMEs share good practice.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

Protect an application exposed on Internet with F5 XC WAAP

Matt_Dierick
F5 Employee
F5 Employee

on ‎20-Sep-2022 05:00

The use case

An application is up and running and exposed on Internet. This application, let's say https://www.mybank.com, is not protected today.

With F5 Distributed Cloud Web App and API Protection (XC WAAP), we will protect with:

  • L3/L4 DDoS Protection, unlimited
  • WAF
  • Bot Protection (signature based)
  • API protection
  • Rate Limiting

 

The architecture

Matthieu_Dieric_0-1662739022983.png

 

The users connect to the F5 XC Global Network through Anycast IP address. The DNS can be managed by F5 XC or by the customer.

Then, the F5 XC Global Network connects to the Internet Application and protect it. 

Solution overview and services offered

F5 XC WAAP offers by default

  • 1 anycast VIP
  • 1 Distributed LB
  • 2 Delegated DNS domain
  • Unlimited L3/L4 protection
  • WAAP protection
    • WAF Policy (based on BIG-IP and Nginx WAF engine)
    • Bot Signature protection
    • API Protection (Swagger enforcement)

But more advanced services are available

  • Advanced Bot Protection (Shape)
  • Advanced API Protection with API discovery
  • Malicious User Detection and Mitigation (AI/ML)

 

Use Case video

In this video, we explain in details this use case and the solution.

 

Labels:
Comments
Victor_Granic
F5 Employee
F5 Employee
‎21-Sep-2022 08:28

Thanks,  Matthieu! Your video provides a very clear explanation about the Distributed Cloud services.

Version history
Last update:
‎15-Sep-2022 02:21
Updated by:
F5 Employee
Contributors
Copyright © 2023 Khoros, LLC