OPSWAT Integration with F5

Question

Hi Experts,Could you please help me with below points and what are the possibilities. Thanks.What type of application or content-type supported by WAF, before it send upload file requests towards OPSWAT servers for scanning.Any other way for capturing traffics from WAF to OPSWAT servers for those specific requests, forwarded for upload file scanning, apart from tcpdump?WAF can forward upload file for scanning even in if it learning mode?

lucas_thompson · Answer

For inbound use cases, here is an article that talks about how to configure MetaDefender ICAP to scan incoming SSL-offloaded (BIG-IP has the serverssl cert and key and talks HTTP to the pool member) web traffic:
https://docs.opswat.com/mdicap/integrations/f5-big-ip-asm--waf-
&nbsp;
For outbound use cases where BIG-IP has to un-wrap the SSL (BIG-IP does not have the serverssl cert and key), we have a module called "SSL Orchestrator" that can man-in-the-middle outbound connections and utilize a variety of ICAP or inline-HTTP servers for content scanning.

liefzimmerman · Answer

adeelshahzad - if your question was answered please consider Mark as Solution to help future community members. Thanks.

Forum Discussion

OPSWAT Integration with F5

Recent Discussions

not able to access f5 via ssh and gui

tunnel failed after antivirus avg from trial to full protection

user alert on apm logs

Adding New BigIP Units Using Free CPUs on i7800 (LB13 & LB14) to an existing HA Pair

LTM + GTM on same box

Related Content

Implementing SSL Orchestrator with OPSWAT MetaDefender

Integrating OPSWAT MetaDefender With F5 SSL Orchestrator

Integrating OPSWAT MetaDefender with F5 Advanced WAF & BIG-IP ASM

Access Troubleshooting: BIG-IP APM OIDC integration

Run Advanced Containers like OPSWAT Content Scrubbing Directly On F5 Distributed Cloud Nodes