Archive for microsoft

Deploying F5’s Web Application Firewall in Microsoft Azure Security Center

Posted in security, f5, big-ip, cloud, cloud computing, silva, microsoft, application delivery, waf, azure by psilva on May 9th, 2017

Use F5’s Web Application Firewall (WAF) to protect web applications deployed in Microsoft Azure.

Applications living in the Cloud still need protection. Data breaches, compromised credentials, system vulnerabilities, DDoS attacks and shared resources can all pose a threat to your cloud infrastructure. The Verizon DBIR notes that web application attacks are the most likely vector for a data breach attack. While attacks on web applications account for only 8% of reported incidents, according to Verizon, they are responsible for over 40% of incidents that result in a data breach. A 2015 survey found that 15% of logins for business apps used by organizations had been breached by hackers.

One way to stay safe is using a Web Application Firewall (WAF) for your cloud deployments.

Let’s dig in on how to use F5’s WAF to protect web applications deployed in Microsoft Azure. This solution builds on BIG-IP Application Security Manager (ASM) and BIG-IP Local Traffic Manager (LTM) technologies as a preconfigured virtual service within the Azure Security Center.

Some requirements for this deployment are:

  • You have an existing web application deployed in Azure that you want to protect with BIG-IP ASM
  • You have an F5 license token for each instance of BIG-IP ASM you want to use

To get started, log into your Azure dashboard and on the left pane, toward the bottom, you’ll see Security Center and click it.

awaf1.jpg

Next, you’ll want to click the Recommendations area within the Security Center Overview.

awaf2.jpg

And from the list of recommendations, click Add a web application firewall.

awaf3.jpg

A list of available web applications opens in a new pane. From the application list, select the application you want to secure.

awaf5.jpg

And from there click Create New. You’ll get a list of available vendors’ WAFs and choose F5 Networks.

awaf7.jpg

A new page with helpful links and information appears and at the bottom of the page, click Create.

awaf8.jpg

First, select the number of machines you want to deploy – in this case we’re deploying two machines for redundancy and high availability. Review the host entry and then type a unique password for that field. When you click Pricing Tier, you can get info about sizing and pricing. When you are satisfied, at the bottom of that pane click OK.

awaf82.jpg

Next, in the License token field, copy and paste your F5 license token. If you are only deploying one machine, you’ll only see one field. For the Security Blocking Level, you can choose Low, Medium or High. You can also click the icon for a brief description of each level. From the Application Type drop down, select the type of application you want to protect and click OK (at the bottom of that pane).

awaf83.jpg

Once you see two check marks, click the Create button.

awaf84.jpg

Azure then begins the process of the F5 WAF for your application. This process can take up to an hour. Click the little bell notification icon for the status of the deployment.

awaf8687.jpg

You’ll receive another notification when the deployment is complete.

awaf88.jpg

After the WAF is successfully deployed, you’ll want to test the new F5 WAF and finalize the setup in Azure including changing the DNS records from the current server IP to the IP of the WAF.

When ready, click Security Center again and the Recommendations panel. This time we’ll click Finalize web application firewall setup.

awaf9.jpg

And click your Web application.

awaf91.jpg

Ensure your DNS settings are correct and check the I updated my DNS Settings box and when ready, click Restrict Traffic at the bottom of the pane.

awaf92.jpg

Azure will give you a notification that it is finalizing the WAF configuration and settings, and you will get another notification when complete.

awaf93.jpg

And when it is complete, your application will be secured with F5’s Web Application Firewall.

Check out the demo video and rest easy, my friend.

ps

Related:




Application Availability Between Hybrid Data Centers

Reliable access to mission-critical applications is a key success factor for enterprises. For many organizations, moving applications from physical data centers to the cloud can increase resource capacity and ensure availability while reducing system management and IT infrastructure costs. Achieving this hybrid data center model the right way requires healthy resource pools and the means to distribute them. The F5 Application Availability Between Hybrid Data Centers solution provides core load-balancing, DNS and acceleration services that result in non-disruptive, seamless migration between private and public cloud environments.

Check out the new Reference Architecture today along with a new video!

ps

Related:

 

Connect with Peter: Connect with F5:
o_linkedin[1] o_rss[1] o_twitter[1]   o_facebook[1] o_twitter[1] o_slideshare[1] o_youtube[1]



TechEd2013 – The Video Outtakes

Posted in , f5, big-ip, silva, video, microsoft, fun, technology by psilva on June 7th, 2013

The bloops, cuts, laughs, mistakes and outtakes from #MSTechEd 2013. We’re all human.

ps

Related:

Connect with Peter: Connect with F5:
o_linkedin[1] o_twitter[1]   o_facebook[1] o_twitter[1] o_slideshare[1] o_youtube[1]



TechEd2013 – That’s a Wrap

Posted in f5, big-ip, silva, video, microsoft, application delivery, technology by psilva on June 6th, 2013

I wrap it up from the Microsoft TechEd North America 2013 Conference. Special thanks to Jeff Bellamy, Greg Coward, Ryan Korock and Phil Simpson along with my camera operators Courtney, Natasha and Robert. Reporting from New Orleans, thanks for watching!

ps

Related:

Connect with Peter: Connect with F5:
o_linkedin[1] o_twitter[1]   o_facebook[1] o_twitter[1] o_slideshare[1] o_youtube[1]



TechEd2013 – Gimme 90 Seconds Betcha Didn’t Know Edition (feat. Simpson)

Posted in f5, big-ip, silva, video, microsoft, application delivery, fun, technology by psilva on June 5th, 2013

The coolest trade show game show is back! F5 Business Development Manager Phil Simpson tests his F5 knowledge in this special ‘Betcha Didn’t Know’ Edition. When people hear of the many BIG-IP capabilities their response is often, ‘I didn’t know you could do that!’ Let’s see if Phil can win the limited edition psilva autographed F5 ball by sharing some unique BIG-IP features that you may not have known about. These are always fun.

ps

Related:

Connect with Peter: Connect with F5:
o_linkedin[1] o_twitter[1]   o_facebook[1] o_twitter[1] o_slideshare[1] o_youtube[1]



TechEd2013 – NVGRE with Microsoft’s System Center 2012 VMM (feat. Korock)

After resisting for over 3 years, F5 Technical Director Ryan Korock finally joins me on camera to discuss the new NVGRE solution. This new solution—along with F5’s broader solution set—aims to help customers assure reliable performance regardless of how individual organizations choose to architect their systems. Through integration with Microsoft’s System Center 2012 Virtual Machine Manager, the F5 solution will dynamically serve as a bridge between customers’ virtualized and non-virtualized environments. F5 solutions can augment Windows Server 2012 Hyper-V Network Virtualization environments, providing notable benefits for organizations deploying Microsoft and F5 technologies in concert, including cloud and service providers.

ps

Related:

Connect with Peter: Connect with F5:
o_linkedin[1] o_twitter[1]   o_facebook[1] o_twitter[1] o_slideshare[1] o_youtube[1]



TechEd2013 – The Top 5 Questions

Posted in f5, big-ip, application security, silva, video, microsoft, application delivery, technology by psilva on June 4th, 2013

I review the top 5 questions being asked in booth 816 at #MSTechEd 2013. Azure, NVGRE and TMG all make the list. There is a surprise at #5 but not to those of us in the booth. :-)

ps

Related:

Connect with Peter: Connect with F5:
o_linkedin[1] o_twitter[1]   o_facebook[1] o_twitter[1] o_slideshare[1] o_youtube[1]



TechEd2013 – Secure Windows Azure Access

Posted in security, f5, big-ip, application security, cloud, cloud computing, silva, video, microsoft by psilva on June 4th, 2013

I meet with F5 Solution Engineer Greg Coward to talk about and demo the BIG-IP IPsec integration with Windows Azure.  To support the number of organizations embracing the Windows Azure cloud platform, Microsoft has chosen to work with F5 on integrating complementary technologies. The integration enables BIG-IP solutions to better direct, monitor, and secure application resources according to an IT team’s traffic management preferences. BIG-IP LTM provides advanced IPsec tunneling capabilities between corporate data centers and multiple Windows Azure data centers.  This approach enhances access and security capabilities across separate resource environments, while enabling application services—such as optimization and health monitoring—to be seamlessly deployed as if all cloud and data center resources were connected by the same local networking fabric.

Related:

Connect with Peter: Connect with F5:
o_linkedin[1] o_twitter[1]   o_facebook[1] o_twitter[1] o_slideshare[1] o_youtube[1]



TechEd2013 – Network Virtualization & Cloud Solutions

Posted in f5, big-ip, cloud computing, silva, video, microsoft, application delivery, technology, azure, hyper-v by psilva on June 3rd, 2013

I chat with Jeff Bellamy, F5 Director Business Development, about the new F5 network virtualization and cloud solutions announced at Microsoft’s North America TechEd.  We discuss the F5/Microsoft Partnership along with the benefits customers realize in combining F5 application delivery services with the flexibility of Microsoft Windows Server 2012 and System Center 2012 offerings.  F5 technologies are featured in a number of conference activities, including speaking presentations from Microsoft and demonstrations of how enterprises and service providers can rapidly and efficiently scale network and cloud resources to support their IT initiatives without compromise.

ps

Related:

Connect with Peter: Connect with F5:
o_linkedin[1] o_twitter[1]   o_facebook[1] o_twitter[1] o_slideshare[1] o_youtube[1]



TechEd2013 – Find F5

Posted in f5, big-ip, silva, video, microsoft, application delivery, technology by psilva on June 3rd, 2013

I show you how to find F5 Booth 816 at the Microsoft TechEd North America 2013 Conference and even juggle a few F5 squeeze balls just for you. Reporting from the New Orleans Convention Center.

Related:

Connect with Peter: Connect with F5:
o_linkedin[1] o_twitter[1]   o_facebook[1] o_twitter[1] o_slideshare[1] o_youtube[1]




« Older episodes ·