APM with external Logon page

Question

In our case APM+LTM acts as reverse proxy and https offloading.
So far it also does authentication to Active Directory.
What are the security implications of using external logon page/web site instead of F5's built in logon page?
Does it make easier to hack/DDOS the system?
Or F5 is still on the the edge and making sure the security is the same?&nbsp;
Thanks !!!&nbsp;

boneyard · Answer

as so often it depends:&nbsp;
if you run the external page on a raspberry pi with an unpatched apache connected via a 3G modem then you are quite susceptible for hacking / ddos.&nbsp;
if you place the website behind the LTM/APM that is currently in place the difference is quite small. as long as the server is maintained well.&nbsp;
if you run the external page on a well configured and regularly patched webserver, protected by a WAF and via an internet line protected by cloud based scrubbing service then it might be better.&nbsp;

Forum Discussion

APM with external Logon page

1 Reply

Recent Discussions

Chrome V 124+ on MacOS - Virtual Server Access Issue

F5Access | MacOS Sonoma

Transaction looks successful but file not downloading

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

F5 Access Guard Deprecated: ZTA APM

Related Content

CSV to Address External Datagroup File

External Monitor Information and Templates

TACACS+ External Monitor (Python)

snmp-check external monitor

F5 BIG-IP and NGINX - Securing Your AWS VPC Lattice Applications for External Clients