F5 Distributed Cloud: Discovering & Securing API’s

Welcome

In this lab, participants will explore the depths of F5 Web Application and API Protection (WAAP) within F5 Distributed Cloud. Dive headfirst into the cutting-edge world of API Discovery, uncovering what’s within: Sensitive Data and Authentication State detection. Get hands-on experience as you unleash the power of API Protection and API Rate Limiting.

Objective:

• Gain a deeper understanding of key F5 Distributed Cloud security functions and controls

• Explore securing APIs through API Discovery and Protection, along with other controls within F5 Distributed Cloud

  • API Discovery: Provided via machine-based learning processes, enables visualization of the API Framework, assesses use of end-points, discovers new end-points based on flows, identifies use of sensitive information, and enables swagger file export.

  • API Protection: Encompasses a set of definitions and controls to protect and secure the functions, use, and endpoints of the delivered API’s framework.

  • Web Applcation Firewall: Behaves as an intermediate proxy to inspect app requests and responses to block and mitigate a broad spectrum of risks via signatures and robust behavioral-based threat detection to protect applications wherever they are deployed.

  • Rate Limting: Defines parameters that can be used for fine-grained control over requests for an HTTP load-balancer that are subjected to rate-limiting using AI/ML learning engine to uniquely discover API endpoints used during service-to-service communication.

  • Malicious User Detection: Provided via machine-based learning processes, enables malicious user behavior tracking by categorizing users into varying threat levels, allowing automatic or manual mitigation.

Preparation:

Enter your namespace: Save

Current namespace: <namespace>

Note

You may have had a namespace from a previous lab, pleased update with the new.

Warning

Guide pages might need to be refreshed to get updated namespace to render.

Lab & Tasks:

• All Lab requirements will be noted in the tasks that follow

• Estimated completion time: 6 Labs approximately 8-10 minutes each

Labs:

• Introduction: Accessing F5 Distributed Cloud Console
  • Course/Lab Invitation
  • Accessing UDF (F5 Unified Demo Framework)
  • Accessing F5 Distributed Cloud
• Lab 1: Load Balancer and Origin
  • Task 1: Review Load Balancer and Origin Pool
  • Task 2: Validate Load Balancer
• Lab 2: API Inventory
  • Task 1: Simulate Allowed Access to a Shadow API
  • Task 2: API Definition
  • Task 3: Enabling API Inventory
  • Task 4: Simulate Blocked Access to a Shadow API
• Lab 3: API Protection
  • Task 1: Simulate Allowed Access to a Misconfigured API
  • Task 2: Enabled API Protection
  • Task 3: Simulate Blocked Access to a Misconfigured API
• Lab 4: Web Application Firewall (WAF)
  • Task 1: Simulate an Unmitigated Attack
  • Task 2: Enabled a WAF Policy
  • Task 3: Simulate a Mitigated Attack
• Lab 5: Rate Limiting
  • Task 1: Simulate Unmitigated Excessive Requests
  • Task 2: Enabled API Rate-Limiting
  • Task 3: Simulate Mitigated Excessive Requests
• Lab 6: Security Analytics and Malicious User Detection
  • Task 1: Review Requests Dashboard
  • Task 2: Review Security Anatlyics Dashboard
  • Task 3: Review Malicious User Detection
• Lab 7: API Discovery Using the BIG-IP Connector
  • Task 1: Review Customer Edge (CE) Infrastructure
  • Task 2: Review BIG-IP Connector Service
  • Task 3: Review Discovered API Service
  • Task 4: Review Performance and Logs
  • Task 5: AI Assistant
• Conclusion
• Appendix