Training goals
code: F5N-AWAF | version: v17.1
In this 4 day course, students are provided with a functional understanding of how to deploy, tune, and operate F5 Advanced Web Application Firewall to protect their web applications from HTTP-based attacks.
The course includes lecture, hands-on labs, and discussion about different F5 Advanced Web Application Firewall tools for detecting and mitigating threats from multiple attack vectors such web scraping, Layer 7 Denial of Service, brute force, bots, code injection, and zero-day exploits.
Course Objectives
- Describe the role of the BIG-IP system as a full proxy device in an application delivery network
- Provision F5 Advanced Web Application Firewall resources
- Define a web application firewall
- Describe how F5 Advanced Web Application Firewall protects a web application by securing file types, URLs, and parameters
- Deploy F5 Advanced Web Application Firewall using the Rapid Deployment template (and other templates) and define the security checks included in each
- Define learn, alarm, and block settings as they pertain to configuring F5 Advanced Web Application Firewall
- Define attack signatures and explain why attack signature staging is important
- Contrast positive and negative security policy implementation and explain benefits of each
- Configure security processing at the parameter level of a web application
- Use an application template to protect a commercial web application
- Deploy F5 Advanced Web Application Firewall using the Automatic Policy Builder
- Tune a policy manually or allow automatic policy building
- Integrate third party application vulnerability scanner output into a security policy
- Configure login enforcement and session tracking
- Configure protection against brute force, web scraping, and Layer 7 denial of service attacks
- Implement iRules using specific F5 Advanced Web Application Firewall events and commands
- Use Content Profiles to protect JSON and AJAX-based applications
- Implement Bot Signatures
- Implement Proactive Bot Defense
Audience:
this course is intended for security and network administrators who will be responsible for the installation, deployment, tuning, and day-to-day maintenance of the F5 Advanced Web Application Firewall.
Additional information
| Prerequisites | There are no F5-technology-specific prerequisites for this course. However, completing the following before attending would be very helpful for students with limited BIG-IP administration and configuration experience:
-or-
The following free web-based training courses, although optional, will be very helpful for any student with limited BIG-IP administration and configuration experience. These courses are available at F5 University:
The following general network technology knowledge and experience are recommended before attending any F5 Global Training Services instructor-led course:
|
|---|---|
| Difficulty level | |
| Duration | 4 days |
| Certificate | The participants will obtain certificates signed by F5 Networks (course completion). |
| Trainer | Certified F5 Networks Trainer. |
Training thematically related
Networking and Wireless
DC Networking | Aruba
-
Configuring Data Center Networks with AOS-CX training Aruba
price from: 2100 EUR
duration: 3 days
difficulty level: 3 of 6
code: ARUBA-0001172987-DCN
version: 21.11
Mobility | Aruba
-
Configuring Mobility with AOS-8 Level 1 training Aruba
price from: 2100 EUR
duration: 3 days
difficulty level: 2 of 6
code: ARUBA-0001202564-CAM1
version: Rev. 23.22
-
Configuring Mobility with AOS-8 Level 2 training Aruba
price from: 3000 EUR
duration: 5 days
difficulty level: 3 of 6
code: ARUBA-0001202663-CAM2
version: Rev. 23.22
Network Management | Aruba
-
Configuring Network Automation Solutions training Aruba
price from: 2400 EUR
duration: 4 days
difficulty level: 3 of 6
code: ARUBA-0001196345-CANA
version: Rev. 22.21
-
Managing Campus Networks with the Airwave Management Platform training Aruba
price from: 2100 EUR
duration: 3 days
difficulty level: 3 of 6
code: ARUBA- 0001135094-MCNA
version: Rev. 20.31
-
Configuring Instant Access Points training Aruba
price from: 2100 EUR
duration: 3 days
difficulty level: 2 of 6
code: ARUBA-0001179945-CIAP
version: Rev. 21.21
-
Configuring Aruba EdgeConnect SD-Branch training Aruba
price from: 2100 EUR
duration: 3 days
difficulty level: 4 of 6
code: ARUBA-0001196343-SDB
version: Rev. 22.21
Security | Aruba
-
Implementing Network Security training Aruba
price from: 3000 EUR
duration: 5 days
difficulty level: 4 of 6
code: ARUBA-0001196487-IANS
version: Rev. 22.21
-
Network Security Fundamentals training Aruba
price from: 2400 EUR
duration: 4 days
difficulty level: 3 of 6
code: ARUBA-0001128122-NSF
version: Rev. 20.41
-
Configuring HPE Aruba Networking ClearPass training Aruba
price from: 3000 EUR
duration: 5 days
difficulty level: 3 of 6
code: ARUBA-0001202122-ACP
version: Rev. 23.21
2025-10-06 | Virtual Classroom sign up
Switching | Aruba
-
AOS-CX Switching Fundamentals training Aruba
price from: 3000 EUR
duration: 5 days
difficulty level: 3 of 6
code: ARUBA-0001208242
version: Rev. 24.31
-
Implementing AOS-CX Switching training Aruba
price from: 3000 EUR
duration: 5 days
difficulty level: 4 of 6
code: ARUBA-0001208243
version: Rev. 24.31
-
Configuring AOS-S Switches Level 1 training Aruba
price from: 2100 EUR
duration: 3 days
difficulty level: 2 of 6
code: ARUBA-0001171963-COS1
version: Rev. 16.41
-
Configuring AOS-S Switching Level 2 training Aruba
price from: 3000 EUR
duration: 5 days
difficulty level: 3 of 6
code: ARUBA-0001172218-COS2
version: Rev. 17.41
Network+ | CompTIA
-
CompTIA Network+ Prep Course training CompTIA
2025-06-30 | Virtual Classroom sign up
Wireless | CWNP
-
CWNA Certified Wireless Network Administrator training CWNP
2025-06-24 | Virtual Classroom sign up -
CWAP Certified Wireless Analysis Professional training CWNP
-
CWDP Certified Wireless Design Professional training CWNP
-
CWS Certified Wireless Specialist training CWNP
-
CWSP Certified Wireless Security Professional training CWNP
-
CWT Certified Wireless Technician training CWNP
Wireless IoT | CWNP
-
CWISA Certified Wireless IoT Solutions Administrator training CWNP
-
CWICP Certified Wireless IoT Connectivity Professional training CWNP
-
CWIIP Certified Wireless IoT Integration Professional training CWNP
-
CWIDP Certified Wireless IoT Design Professional training CWNP
2025-06-24 | Virtual Classroom sign up
Extreme Fabric | Extreme Networks
-
Extreme Fabric - Installation and Configuration training Extreme Networks
2025-08-25 | Virtual Classroom sign up -
Extreme Fabric - Management training Extreme Networks
2025-08-28 | Virtual Classroom sign up -
Extreme Fabric - Advanced Configuration training Extreme Networks
2025-07-07 | Virtual Classroom sign up -
Extreme Fabric - Troubleshooting training Extreme Networks
2025-07-09 | Virtual Classroom sign up -
Extreme Certified Professional in Extreme Fabric Exam training Extreme Networks
Extreme Switching | Extreme Networks
-
Extreme Switching - Installation and Configuration training Extreme Networks
2025-08-25 | Virtual Classroom sign up -
Extreme Switching - Management training Extreme Networks
-
Extreme Switching - Advanced Configuration training Extreme Networks
-
Extreme Switching - Troubleshooting training Extreme Networks
2025-08-28 | Virtual Classroom sign up -
Extreme Certified Professional in Extreme Switching Exam training Extreme Networks
ExtremeWireless Cloud | Extreme Networks
-
ExtremeWireless Cloud - Installation and Configuration training Extreme Networks
-
ExtremeWireless Cloud - Management training Extreme Networks
-
ExtremeWireless Cloud - Advanced Configuration training Extreme Networks
-
ExtremeWireless Cloud - Troubleshooting training Extreme Networks
-
Extreme Certified Professional in ExtremeWireless Cloud Exam training Extreme Networks
ExtremeControl | Extreme Networks
-
ExtremeControl - Installation and Configuration training Extreme Networks
2025-06-23 | Virtual Classroom sign up -
ExtremeControl - Management training Extreme Networks
2025-06-25 | Virtual Classroom sign up -
ExtremeControl - Advanced Configuration training Extreme Networks
2025-06-27 | Virtual Classroom sign up -
ExtremeControl - Troubleshooting training Extreme Networks
2025-07-03 | Virtual Classroom sign up -
Extreme Certified Professional in ExtremeControl Exam training Extreme Networks
ExtremeCloud™ IQ – Site Engine | Extreme Networks
-
ExtremeCloud™ IQ - Site Engine - Installation and Configuration training Extreme Networks
2025-06-27 | Virtual Classroom sign up -
ExtremeCloud™ IQ - Site Engine - Management training Extreme Networks
-
ExtremeCloud™ IQ - Site Engine - Advanced Configuration training Extreme Networks
-
ExtremeCloud™ IQ - Site Engine - Troubleshooting training Extreme Networks
-
Extreme Certified Professional in ExtremeCloud™ IQ - Site Engine Exam training Extreme Networks
ExtremeCloud™ IQ – Controller | Extreme Networks
-
ExtremeCloud™ IQ - Controller - Installation and Configuration training Extreme Networks
-
ExtremeCloud™ IQ - Controller - Management training Extreme Networks
-
ExtremeCloud™ IQ - Controller - Advanced Configuration training Extreme Networks
-
ExtremeCloud™ IQ - Controller - Troubleshooting training Extreme Networks
-
Extreme Certified Professional in ExtremeCloud™ IQ - Controller Exam training Extreme Networks
Troubleshooting BIG IP | F5
-
Troubleshooting BIG-IP training F5
2025-10-06 | Warszawa / Virtual Classroom HYBRID: hybrid training GONB: guaranteed on next booking sign up
Local Traffic Manager (LTM) | F5
-
Configuring BIG-IP LTM Local Traffic Manager training F5
2025-06-25 | Virtual Classroom sign up
Fortinet Certified Professional (FCP) | Fortinet
-
FortiGate Administrator training Fortinet
2025-10-27 | Kraków / Virtual Classroom HYBRID: hybrid training GONB: guaranteed on next booking sign up -
recommended training
FortiGate Immersion training Fortinet
-
FortiAnalyzer Administrator training Fortinet
-
FortiAnalyzer Analyst training Fortinet
2025-08-11 | Virtual Classroom sign up -
recommended training
FortiManager Administrator training Fortinet
-
FortiAuthenticator Administrator training Fortinet
-
FortiMail training Fortinet
-
FortiWeb Administrator training Fortinet
-
Secure Wireless LAN training Fortinet
2025-09-15 | Kraków / Virtual Classroom HYBRID: hybrid training GONB: guaranteed on next booking sign up
Fortinet Certified Solution Specialist (FCSS) | Fortinet
-
Enterprise Firewall training Fortinet
2025-07-02 | Kraków / Virtual Classroom HYBRID: hybrid training GONB: guaranteed on next booking sign up -
Network Security Support Engineer training Fortinet
Datacom | Huawei
-
HCIA-Datacom training Huawei
-
HCIP-Datacom - Core Technology training Huawei
price from: 4000 EUR
duration: 10 days
difficulty level: 3 of 6
code: H-HCIP-Datacom-CT
version: v1.0
Network Security | Palo Alto Networks
-
recommended training
EDU-210 Firewall Essentials: Configuration and Management training Palo Alto Networks
2025-10-27 | Warszawa / Virtual Classroom HYBRID: hybrid training GONB: guaranteed on next booking producer discount: -20% sign up -
EDU-220 Panorama: Managing Firewalls at Scale training Palo Alto Networks
-
EDU-330 Firewall: Troubleshooting training Palo Alto Networks
2025-10-15 | Kraków / Virtual Classroom HYBRID: hybrid training GONB: guaranteed on next booking producer discount: -20% sign up
Security
Security | Aruba
-
Implementing Network Security training Aruba
price from: 3000 EUR
duration: 5 days
difficulty level: 4 of 6
code: ARUBA-0001196487-IANS
version: Rev. 22.21
-
Network Security Fundamentals training Aruba
price from: 2400 EUR
duration: 4 days
difficulty level: 3 of 6
code: ARUBA-0001128122-NSF
version: Rev. 20.41
-
Configuring HPE Aruba Networking ClearPass training Aruba
price from: 3000 EUR
duration: 5 days
difficulty level: 3 of 6
code: ARUBA-0001202122-ACP
version: Rev. 23.21
2025-10-06 | Virtual Classroom sign up
Java Programming | Capstone Courseware
-
107 Java Development for Secure Systems training Capstone Courseware
2025-06-25 | Virtual Classroom sign up
Infinity Specializations | Check Point
-
recommended training
Check Point Certified Troubleshooting Administrator (CCTA) training Check Point
2025-06-26 | Virtual Classroom sign up -
recommended training
Check Point Certified Troubleshooting Expert (CCTE) training Check Point
-
Check Point Certified Automation Specialist (CCAS) training Check Point
2025-07-21 | Virtual Classroom sign up -
Check Point Certified Cloud Specialist (CCCS) training Check Point
2025-06-26 | Virtual Classroom sign up -
Harmony Endpoint Specialist (CCES) training Check Point
-
Check Point Certified Multi-Domain Security Management Specialist (CCMS) training Check Point
-
Check Point Certified VSX Specialist (CCVS) training Check Point
SecurityX (formerly CASP+) | CompTIA
-
CompTIA SecurityX Prep Course training CompTIA
2025-06-23 | Virtual Classroom sign up
Fortinet Certified Professional (FCP) | Fortinet
-
FortiGate Administrator training Fortinet
2025-10-27 | Kraków / Virtual Classroom HYBRID: hybrid training GONB: guaranteed on next booking sign up -
recommended training
FortiGate Immersion training Fortinet
-
FortiAnalyzer Administrator training Fortinet
-
FortiAnalyzer Analyst training Fortinet
2025-08-11 | Virtual Classroom sign up -
recommended training
FortiManager Administrator training Fortinet
-
FortiAuthenticator Administrator training Fortinet
-
FortiMail training Fortinet
-
FortiWeb Administrator training Fortinet
-
Secure Wireless LAN training Fortinet
2025-09-15 | Kraków / Virtual Classroom HYBRID: hybrid training GONB: guaranteed on next booking sign up
Fortinet Certified Solution Specialist (FCSS) | Fortinet
-
Enterprise Firewall training Fortinet
2025-07-02 | Kraków / Virtual Classroom HYBRID: hybrid training GONB: guaranteed on next booking sign up -
Network Security Support Engineer training Fortinet
Security | Microsoft
-
recommended training
SC-900T00 Microsoft Security, Compliance, and Identity Fundamentals training Microsoft
-
AZ-500T00-A Microsoft Azure Security Technologies training Microsoft
-
MS-500T00 Microsoft 365 Security Administration training Microsoft
-
SC-200T00 Microsoft Security Operations Analyst training Microsoft
-
SC-300T00 Microsoft Identity and Access Administrator training Microsoft
-
SC-400 Administering Information Protection and Compliance in Microsoft 365 training Microsoft
Information Systems Management | Mile2
-
C)CSSM - Certified Cybersecurity Systems Manager training Mile2
-
C)ISSO - Certified Information Systems Security Officer training Mile2
-
C)SLO - Certified Security Leadership Officer training Mile2
-
C)SP - Certified Security Principles training Mile2
-
IS18 Security Controls training Mile2
2025-06-24 | Virtual Classroom sign up
Incident Handling | Mile2
-
C)IHE - Certified Incident Handling Engineer training Mile2
2025-06-23 | Virtual Classroom sign up
Healthcare | Mile2
-
C)HISSP - Certified Healthcare IS Security Practitioner training Mile2
2025-06-24 | Virtual Classroom sign up
Cyber Threat Analyst | Mile2
-
C)TIA - Certified Threat Intelligence Analyst training Mile2
2025-06-23 | Virtual Classroom sign up -
C)CSA - Certified Cyber Security Analyst training Mile2
Network Security | Palo Alto Networks
-
recommended training
EDU-210 Firewall Essentials: Configuration and Management training Palo Alto Networks
2025-10-27 | Warszawa / Virtual Classroom HYBRID: hybrid training GONB: guaranteed on next booking producer discount: -20% sign up -
EDU-220 Panorama: Managing Firewalls at Scale training Palo Alto Networks
-
EDU-330 Firewall: Troubleshooting training Palo Alto Networks
2025-10-15 | Kraków / Virtual Classroom HYBRID: hybrid training GONB: guaranteed on next booking producer discount: -20% sign up
Fundamentals | SCADEMY
-
CL-ARF Angular, React and Front-end Security Follow Up training SCADEMY
-
CL-OAF OWASP Top 10, Secure Coding Fundamentals training SCADEMY
-
CL-OJA OWASP Top 10, Java Secure Coding Follow Up training SCADEMY
-
CL-OJF OWASP Top 10, Java Secure Coding Fundamentals training SCADEMY
-
CL-ONA OWASP Top 10, C# Secure Coding Follow Up training SCADEMY
-
CL-ONF OWASP Top 10, C# Secure Coding Fundamentals training SCADEMY
-
CL-OSF SDLC and OWASP Top 10, Secure Coding Fundamentals training SCADEMY
C/C++ | SCADEMY
-
CL-CCA Comprehensive C and C++ secure coding (ARM) training SCADEMY
-
CL-CCI Comprehensive C and C++ secure coding (x86) training SCADEMY
-
CL-CMA C and C++ security master course (ARM) training SCADEMY
-
CL-CMI C and C++ security master course (x86) training SCADEMY
-
CL-CPA C and C++ secure coding (ARM) training SCADEMY
-
CL-CPI C and C++ secure coding (x86) training SCADEMY
-
CL-CTS Security testing native code training SCADEMY
Upcoming F5 training
-
2025-06-25 Virtual Classroom
Configuring BIG-IP LTM Local Traffic Manager
-
2025-07-03 Warszawa / Virtual Classroom
Administering BIG-IP
hybrid training: HYBRID -
2025-07-03 Warszawa / Virtual Classroom
Configuring BIG-IP DNS
hybrid training: HYBRID -
2025-07-03 Warszawa / Virtual Classroom
Troubleshooting BIG-IP
hybrid training: HYBRID -
2025-07-04 Warszawa / Virtual Classroom
Administering rSeries/F5OS Appliance
hybrid training: HYBRID -
2025-07-04 Warszawa / Virtual Classroom
Securing NGINX Deployments
hybrid training: HYBRID -
2025-07-16 Kraków / Virtual Classroom
Configuring BIG-IP LTM Local Traffic Manager
hybrid training: HYBRID -
2025-07-31 Warszawa / Virtual Classroom
Configuring BIG-IP AFM Advanced Firewall Manager
hybrid training: HYBRID -
2025-08-01 Kraków / Virtual Classroom
Administering rSeries/F5OS Appliance
hybrid training: HYBRID -
2025-08-06 Kraków / Virtual Classroom
Developing iRules for BIG-IP
hybrid training: HYBRID