F5 BIG-IP WAF AWS Deployment & Integration
Executive Summary:
F5 Networks provides the Application Delivery Networking platform that works with Amazon EC2, Amazon EBS, and Amazon VPC. F5 and AWS help you rapidly deploy application services securely. With F5 BIG-IP, you can extend the same availability, performance and security services across your public and private cloud environments. At the end of this engagement, your organization will have a scalable, highly available, deployment of F5 WAFs in AWS built around vendor and industry best practices. This implementation will allow your network and security teams to extend their existing process, policy and workflows seamlessly into AWS.
Offering Description:
Vandis engineers will work with your network and security teams to integrate F5 Network BIG-IP WAFs into your private network design on AWS. We will assist with the design and configuration of the VPC, subnets, DMZ, Security Groups, Route Tables, and EC2 Auto Scaling Groups as needed, and then deliver those in a detailed design and implementation document.
Scope:
- Conduct a Network Security Design and Planning Session
- Review overall Amazon Web Services network and application deployment strategy
- Review existing AWS network and network security environment
- Evaluate your existing network security policies including current F5 Networks deployment
- Discuss AWS Network Security Best Practices
- Align your policies and processes with best practices of F5 on AWS
- Draft, present, and iterate an AWS Network Security Design and Configuration document
Deliverables:
- Detailed design and implementation document addressing:
- VPC topology and address space allocation
- Subnet, network segmentation, and DMZ design
- Route Tables
- Security Groups/NACLs
- EC2 Auto Scaling Groups
- Integration of F5 Networks BIG-IP Security Appliances into the VPC
For additional information, please reach out to 516-281-2200 or cloud@vandis.com