Sunday, April 30, 2017

Looking at F5 APM VPN resources disconnects

Looking at  a new F5 vpn solution I found  it strange that you could establish a vpn and disconnect your virtual adapter and  reconnect without being  challenge at the start of the APM policy

Take a look at this  client  starting and stopping his  tunnel  numerous times.



Each new "start" does NOT challenge the user to  establish a new session from  the APM policy standpoint.

So keep  this is in-mind you have ClientSides checks and the users machine is no longer in policy you could open up a door into your systems with out of compliance   hosts.

In this APM policy we have the CSC  "continuous" checks disable due to other issues we found.





SO I'm not 100% sure if this would be a major issues to be concern with if you have continuous hosts checks enabled.

Ken
 




NSE ( network security expert) and Route/Switching Engineer
kfelix  -----a----t---- socpuppets ---dot---com
     ^      ^
=(  @  @ )=
         o 
        /  \

No comments:

Post a Comment