Integrating Radware DefensePro with F5 LTM with SSL

Question

Hi, we are already using F5 LTM for loadbalancing and SSL termination with a couple of webservers. We want to add an IPS / Attack Mitigater to our setup. As we have nearly all traffic ssl encrypted, the IPS system has to see the unencrypted traffic, but not all IPS systems are able to decrypt by itself. does someone have an idea how to integrate such an IPS in this scenario, maybe be terminating the traffic on the LTM, forwarding the decrypted packets to the ips and reentering on the F5 again?&nbsp;
thanks for all tips.&nbsp;
regards&nbsp;
Markus Reichl&nbsp;

what_lies_bene1 · Answer

I've definitely seen a good article on this but can't find it right now. Try doing a search for IDS or IPS (on the whole of DC, not just the forums) and see what comes up.

bart_7972 · Answer

Hi,&nbsp;
https://devcentral.f5.com/tech-tips/articles/divert-unencrypted-traffic-through-an-ips-with-local-traffic-manager.UgIdn21a_FU &nbsp;
I have used it in production with Defense Pro, works very well!&nbsp;
Regards,
Bart&nbsp;

satyricon_81764 · Answer

Thanks Bart, looks like it can help a lot. i'll set up a lab-environment this way...

Markus

Forum Discussion

Integrating Radware DefensePro with F5 LTM with SSL

3 Replies

Recent Discussions

F5Access | MacOS Sonoma

Rewrite uri translation not working

Chrome V 124+ on MacOS - Virtual Server Access Issue

Transaction looks successful but file not downloading

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Related Content

Radware config translation

Making Mobile SDK Integration Ridiculously Easy with F5 XC Mobile SDK Integrator

Integrating SSL Orchestrator with McAfee Web Gateway-Transparent Proxy

Compete Cloud WAF Service- RADWARE

Ensuring Security in Continuous Integration and Continuous Deployment (CI/CD) Pipelines