F5 threat intelligence.

Question

Dear Experts,I am searching around if F5-DNS or AFM is capable of receiving threat intelligence in real-time from TAXII servers related to private community or ISAC?I need more information about F5 capablities to integrate with&nbsp;threat intelligence even with oRegards,Muhannad

leslie_hubertus · Answer

Hi&nbsp;Muhannad&nbsp; - I see nobody has answered you yet, so I've shared the link to your question with a colleague who may be able to help. Can you elaborate on your last sentence, though? It looks incomplete.&nbsp;
"I need more information about F5 capablities to integrate with&nbsp;threat intelligence even with o" &lt;--?
Leslie

aubreykingf5 · Answer

I don't know enough about taxii, but it appears to communicate RESTfully. I am digging into this, but do you happen to know what sorts of things a taxii sends? Is the expectation that it programs a deny-list in real time? Is the expectation simply IP blocking (AFM) based on threat intelligence? Can taxii host a deny-list? If so, AFM / AWAF can be programmed to consume that in an automated fashion..

Forum Discussion

F5 threat intelligence.

2 Replies

Recent Discussions

BIG-IP DNS: Check Status Of Multiple Monitors Against Pool Member

Open Redirection Mitigation

F5Access | MacOS Sonoma

enable tls1.2 on management interface on F5 ltm running version 10.x

[ASM] - what is "Browser Challenge file" ?

Related Content

F5 IP intelligence white-list and verifying the IP whether getting blocked by F5 intelligence

IP intelligence feed list for ASM/WAF?

IP Intelligence Custom Feed in ASM

python f5 SDK 401 Unexpected Error: F5 Authorization Required

F5 ASM | count violation