Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/Mikej81/xc-app-services-tf
XC application services in Terraform
https://github.com/Mikej81/xc-app-services-tf
Last synced: 2 months ago
JSON representation
XC application services in Terraform
- Host: GitHub
- URL: https://github.com/Mikej81/xc-app-services-tf
- Owner: Mikej81
- License: apache-2.0
- Created: 2023-02-16T18:13:57.000Z (almost 2 years ago)
- Default Branch: main
- Last Pushed: 2024-03-05T22:01:58.000Z (11 months ago)
- Last Synced: 2024-08-03T13:01:56.848Z (6 months ago)
- Language: HCL
- Size: 37.1 KB
- Stars: 10
- Watchers: 3
- Forks: 8
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
- awesome-f5 - xc-app-services-tf - Mike Coleman examples of deploying app services in F5 XC with Terraform (Terraform)
README
# xc-app-services-tf
## Example(s) of deploying Application (Security) Services in F5 XC using Terraform
This repo demonstrates many of the security service configurations as well as examples of how to replace iRules in XC using Service Policies and L7 Routes.
- HTTP Load Balancer
- IP Reputation
- Dataguard
- Source IP Stickiness
- TCP Load Balancer
- SSH Load Balancer
- Source IP Stickiness
- UDP Load Balancer
- DNS Load Balancer
- WAAP / WAF
- Blocking
- Default Detection
- Threat Campaigns
- Default Bot
- Service Policy
- Allow IPv4 Prefix
- Deny by ASN
- Deny by Country List
- Deny by Header
- Deny by IP Reputation
- Routes
- Simple
- Redirect [iRule Replacement: HTTP::redirect]
- Direct Response [iRule Replacement HTTP::respond]
- Custom
- [HEADER] [iRule Replacement] Accept-Language Based Redirects
- [HEADER] [iRule Replacement] WWW-Authenticate NTLM Killer
- [Rewrites] [iRule Replacement] URI Rewriting
- [Rewrites] [iRule Replacement] Manual Host Rewriting
- [iRule Replacement: Pool Command] when HTTP_REQUEST { set uri [HTTP::uri] if { $uri ends_with ".gif" } { pool my_pool }
- Bot Standard
- POST /login/ protection
- GET / Web Scraping protection
- Rate Limiting
- Client Side Defense
- App Type & App Settings (ML)
- User Behavior Analysis (Malicious User Detection)
- API Discovery
- [DDoS] Time Series Analysis
## Usage
Map the VES P12 Password to ENV Var
```bash
. ./prep.sh
```
Deploy
```bash
terraform init
terraform plan
terraform apply
```
Destroy
```bash
terraform destroy
```
## Support
Bugs and enhancements can be made by opening an `issue` within the `GitHub` repository.