F5 on Azure behind SDN
Hello,
A customer is looking to host his website on Azure and protect it from Layer 7 attacks.
As a result, we are looking to offer an SDN for Global Application Delivery Performance which will be mitigating the website against any DDoS attacks and a WAF solution to protect the website from Layer 7 attacks.
The question is related to the different deployment scenarios of the WAF in such a scenario:
- Scenario 1: If the customer is looking to go for Azure Front Door which provides him with a WAF on the Edge, as a result, the customer will not need any third-party WAF.
- Scenario 2: If the customer is looking to go for Azure Front Door as an CDN, then we can redirect the traffic to F5 XC WAAP Solution and then go the origin server.
- Scenario 3: If the customer is looking to for Azure Front Door as an CDN, we can suggest a BIG IP AWAF on premise natted behind a NGFW.
As a result, please provide me with your tips and suggestions for such a requirement.