Radiant

Course Description

F5 Advanced Web Application Firewall (Advanced WAF) is a new offering including BIG-IP Application Security Manager (ASM) and additional anti-fraud features which can secure the entire Layer 7 threat spectrum, with client-side protection on one end and application-side protection on the opposite end.

Due to the complexity of traditional ASM implementations, F5 devised Advanced WAF as a solution for customers who want quick configuration for advanced protection against common layer 7 application vulnerabilities, layer 7 denial of service attacks, and client-side fraud defense.

Advanced WAF is not a different product from ASM. It is a new licensing model of existing ASM features, additional defense capabilities, paid add-on features, and paid subscription features.

Prerequisites

There are no F5-technology-specific prerequisites for this course.

However, completing the following before attending would be very helpful for students with limited BIG-IP administration and configuration experience:

Administering BIG-IP instructor-led course
-or-
F5 Certified BIG-IP Administrator

The following free web-based training courses, although optional, will be very helpful for any student with limited BIG-IP administration and configuration experience.
These courses are available at F5 University (https://university.f5.com):

Getting Started with BIG-IP web-based training
Getting Started with BIG-IP Application Security Manager (ASM)

The following general network technology knowledge and experience are recommended before attending any F5 Global Training Services instructor-led course:

OSI model encapsulation
Routing and switching
Ethernet and ARP
TCP/IP concepts
IP addressing and subnetting
NAT and private IP addressing
Default gateway
Network firewalls
LAN vs. WAN

Audience Profile

This course is intended for security and network administrators who will be responsible for the deployment of F5 Advanced Web Application Firewall to secure web applications from common vulnerabilities and denial of service.

Learning Objectives

Differentiating between client-side and application-side web vulnerabilities
Categorizing Attack Techniques
Use the Guided Configuration to deploy a Web Application Security Policy
Defining the key parts of a Web Application Security Policy
Understanding request logging options
Identifying HTTP headers and methods
Defining attack signatures, attack signature staging, and violations
Overview of the OWASP Top Ten
Review learning suggestions and basic policy tuning
Deploy Threat Campaign
Mitigate Credentials Stuffing
Secure a URL from client-side fraud using DataSafe encryption and obfuscation
Use the automated L7 Behavioral Denial of Service feature to detect and mitigate DoS attacks

Content Outline

Chapter 1: Setting Up the BIG-IP System

Introducing the BIG-IP System
Initially Setting Up the BIG-IP System
Archiving the BIG-IP System Configuration
Leveraging F5 Support Resources and Tools

Chapter 2: Threat Overview and Guided Configuration

Classifying Attack Types
Differentiating Benign and Malicious Clients
Categorizing Attack Techniques
Defining the Layer 7 Web Application Firewall
Defining Traffic Processing Objects
Introducing F5 Advanced WAF
Using Guided Configuration for Web Application Security

Chapter 3: Exploring HTTP Traffic

Exploring Web Application HTTP Request Processing
Overview of Application-Side Vulnerabilities
Defining Attack Signatures
Defining Violations

Chapter 4: Securing HTTP Traffic

Defining Learning
Defining Attack Signature Staging
Defining Attack Signature Enforcement

Chapter 5: Mitigating Credential Stuffing

Defining Credential Stuffing Attacks
The Credential Stuffing Mitigation Workflow

Chapter 6: Using BIG-IP DataSafe

What Elements of Application Delivery are Targeted?
Exploiting the Document Object Model
Protecting Applications Using DataSafe
Configuring a DataSafe Profile

Chapter 7: Deploying Threat Campaigns

Defining Threat Campaigns
Differentiate from Attack Signatures
Staging and Threat Campaigns
Live Update for Threat Campaigns

Chapter 8: Using Layer 7 Behavioral Analysis to Mitigate DoS

Defining Behavioral Analysis
Defining the DoS

FAQs

Q: What is the infrastructure required to attend your training program?

A: To attend the training session you should have an operational Desktops or Laptops with required specification along with good internet connection to access the labs.

Q: What if I miss a class on a particular day?

A: We would always recommend you to attend the live session to practice & clarify the doubts instantly and get more value from your investment. However, if due to some contingency if you have to skip the class Radiant Techlearning would help you with the recorded session of that particular day. However, those recorded sessions are not meant only for personal consumption and NOT for distribution or any commercial use.

Q: How I will be accessing the labs?

A: Radiant Techlearning has a data center containing the Virtual Training environment for the purpose of participant’s hand-on-practice. Participants can easily access these labs over Cloud with the help of remote desktop connection. Radiant virtual labs provides you the flexibility to learn from anywhere in the world and in any time zone.

Q: What kind of projects are included as a part of training?

A: The learners will be enthralled as we engage them the real world and industry Oriented projects during the training program. These projects will improve your skills and knowledge and you will gain better experience. These real time projects, they will help you a lot in your future tasks and assignments.

Send a Message.

Enroll

Setting up F5 Advanced WAF