Learn F5 Technologies, Get Answers & Share Community Solutions Join DevCentral

Filter by:
  • Solution
  • Technology

Articles

Sort results

These Are Not The Scrapes You're Looking For - Session Anomalies

In my first article in this series, I discussed web scraping -- what it is, why people do it, and why it could be harmful.  My second article outlined the details of bot detection and how the ASM blocks against these pesky littl... Read more
1 Review

More Web Scraping - Bot Detection

In my last article, I discussed the issue of web scraping and why it could be a problem for many individuals and/or companies.  In this article, we will dive into some of the technical details regarding bots and how the BIG-IP Application... Read more
2 Reviews

Web Scraping - Data Collection or Illegal Activity?

Web Scraping Defined   We've all heard the term "web scraping" but what is this thing and why should we really care about it?  Web scraping refers to an application that is programmed to simulate human web surfing b... Read more
0 Reviews

APM: Break it down Yo!

Access systems are messy. Wait, let me rephrase that, Poorly planned access systems are messy.  We’ve all seen it happen a thousand times. Someone comes r... Read more
2 Reviews

Automagic Vulnerability Scanner Integration: Cenzic Style!

Welcome to the future!  Hoverboards for all,  new clear cola, skateboarding monkeys, and integrat... Read more
0 Reviews

F5 Security on Owasp Top 10: Injections

->Part of the F5/Owasp Top Ten Series    At the top of the  Owasp list is Injections. Their definition is “Injection flaws, such as SQL, OS, and LDAP injection, occur when untrusted data is sent to an interpreter as part of ... Read more
1 Review

F5 Security on Owasp Top 10

Everyone is familiar with the Owasp Top 10. Below, you will find some notes on the Top 10, as well as ways to mitigate these potential threats to your environment.  You can... Read more
Average Rating: 5.0
14 Reviews

Google reCAPTCHA Verification With Sideband Connections

Introduction Virtually every dynamic site on the Internet these days makes use of a CAPTCHA in some fashion. A CAPTCHA is used to verify that a human is driving the interaction with a particular  function on a site. A CAPTCHA in its simples... Read more
0 Reviews

Two-Factor Authentication With Google Authenticator And LDAP

Introduction Earlier this year Google released their time-based one-time password (TOTP) solution named Google Authenticator. A TOTP is a single-use code with a finite lifetime that can be calculated by two parties (client and server) using ... Read more
Average Rating: 4.4
5 Reviews

APM Session Invalidation Using ASM

Introduction: Whenever customers expose their internal resources on the Web using VPNs or SSL VPNS there is still some concern over what type of traffic comes through the connection. In order to assist with these concerns we can provide a combine... Read more
Average Rating: 4.9
3 Reviews

Web Application Login Integration with APM

As we hurtle forward through the information age we continue to find ourselves increasingly dependant on the applications upon which we rely. Whether it's your favorite iPhone app or the tools that allow you to do your job, the application... Read more
1 Review

One Time Passwords via an SMS Gateway with BIG-IP Access Policy Manager

One time passwords, or OTP, are used (as the name indicates) for a single session or transaction.  The plus side is a more secure deployment, the downside is two-fold—first, most solutions involve a token system, which is costly i... Read more
Average Rating: 4.9
7 Reviews

v10.1 - Configuring GTM's DNS Security Extensions

Security extensions were added to the DNS protocol as a means of countering malicious attacks such as cache poisoning, domain hijacking, and man-in-the-middle attacks.  The extensions are described in detail in RFC 4033 (Introduction an... Read more
0 Reviews

iControl 101 - #20 - Port Lockdown

A Self IP address is an IP address that you associate with a VLAN, to access hosts in that VLAN. By virtue of its netmask, a self IP address represents an address space, that is, a range of IP addresses spanning the hosts in the VLAN, rather than... Read more
0 Reviews

Can iRules fix my cert mismatch errors?

SSL encryption as a means of security on the web isn't a new concept. We've talked about it here on DevCentral many times, and it's as pedestrian a concept as a corndog on the boardwalk to most internet users. We've talked about... Read more
0 Reviews

Selective Client Cert Authentication

SSL encryption on the web is not a new concept to the general population of the internet. Those of us that frequent many websites per week (day, hour, minute, etc.) are quite used to making use of SSL encryption for security purposes. It's an... Read more
1 Review

RADIUS Load Balancing with iRules

What is RADIUS? “Remote Authentication Dial In User Service” or RADIUS is a very mature and widely implemented protocol for exchanging ”Triple A” or “Authentication, Authorization and Accounting” information. RADIUS is a relatively simple,... Read more
1 Review

iControl 101 - #08 - Partitions

In a previous article, I discussed user management and the concepts of user roles.  User roles form half of what we refer to as Administrative Domains.  The second half of Administrative Domains are Configuration Partitions.  ... Read more
0 Reviews

iControl 101 - #07 - User Management

iControl is a robust management API that not only encompasses the control of network management objects, but also many other aspects of the system level configuration. This article will discuss the methods used to create and manage all aspects of... Read more
Average Rating: 4.9
4 Reviews

LTM: Configuring IP Forwarding

A basic change in internal routing architecture and functionality between BIG-IP 4.x and LTM 9.x has caused some confusion for customers whose v4.x deployment depended on IP forwarding. Here is an explanation of the change, and the new... Read more
1 Review

Radius Aware Load Balancing via iRules

RADIUS is very popular authentication method that is being widely used in amongst some of the top service providers around the world, not to mention in deployments ranging from enterprise corporate environments to clustered mail systems and back.... Read more
0 Reviews

Configuring Client Certificate Passwordless Authentication on FirePass

Client side certificate authentication systems continue to gain popularity in many business verticals.  The ease and reliability of a certificate based system have the potential to save companies time and money through lowered operational... Read more
Average Rating: 3.4
5 Reviews

iRule Security 101 - #05 - Avoiding Path Traversal

Path Traversal is an attempt to access files and/or directories stored outside web root folder. If successful this could allow malicious users to view content they were not intended to see, execute programs that have lax permissions and were... Read more
0 Reviews

Tweaking FirePass – Integrating RSA SecurID via WebDAV Customization

Note: Special thanks to the Firepass development team for providing this tip. As IT departments deploy an ever-growing list of mobile devices, secure authentication becomes an even bigger nightmare to keep IT management awake at night. One option... Read more
0 Reviews

Offload Authentication with iRules

As the applications being driven by webservers become more and more complex, Applications Developers are always looking for ways to increase efficiency or do away with unneeded processing time. One of the ways that I believe that Applications can... Read more
1 Review