Polynimbus Multi-cloud Secure Application Services Demo
May 22, 2020
This demo uses multi-cloud application service deployment with A10 Thunder Application Delivery Controller (ADC) and Harmony Controller, showing cloud bursting use case enabled by global server load balancing (GSLB) and consolidated web application firewall (WAF) security policy enforcement.
Transcription
Transcript
Welcome to Polynimbus Secure Application demo. This demo uses multi-cloud application service deployment with A10 Application Delivery Controller (Thunder ADC) showing cloud-bursting use case and WAF (web application firewall) security policy enforcement.
As you can see, the primary side is on-premise Data Center and back side is on public clowd.
For ease of understanding, we are using blue page for primary side and yellow page for backup site.
GSLB, global server load balancing, is used to control global traffic among multi-cloud.
In this demo, if there’s a bus traffic exceeding a certain threshold, GSLB will redirect traffic to backup data center.
And Harmony Controller is deployed on public cloud for centralized management and analytics?
First, check the service status and availability using the site test tool. All the test results from different locations shows blue page.
That means all the requests go to on-premise primary data center.
Now initiating HTTP burst traffic against the web application services at www.a10demo.com. Let’s check the service status again. As you can see, the site now show yellow page. That means GSLB detected burst traffic and successfully directed all user request to the backup data center. hosting in a public cloud.
You are seeing a client view analytics on Harmony Controller provides real-time statistics and dashboard for deeper service visibility, including user locations, top users, response codes, end-to-end latency, and so on.
Furthermore, you can get transaction log of user requests as shown here. For example, this transaction shows the user request hit on-premise data center, according to the name and next one, which is 31 seconds later from the previous one, shows user request, hit the secondary data center, hosted on the public cloud because of GSLB function after cloud-burst instant detected.
Next one is unified security policy enforcement demo using integrated WAF feature available on A10 Application Delivery Controller. Using Harmony Controller, you can define the security policy and push it to all ADCs in any cloud or data center.
First, we are creating a WAF security policy on the Harmony Controller. Configuration is very intuitive. You can pick and choose like enabling features from the list on each category.
Here we are enabling the few policies including SQL injection attack protection.
Once a WAF policy is created, you just need to associate with the virtual server.
This will push the created WAF policy to all the ADCs, both on-premise and public cloud.
Now, attacking a web server using SQL injection…
And the request was blocked successfully by the WAF?
This is an optional demo showing the flexibility of A10 Application Delivery Controller. You can customize the response page, using an embedded Tcl-based scripting called aFlex.
This is the example of HTTP response page and try to add WAF violation context, including instant ID, types and messages.
Here the custom page just created. You can see the difference.
Harmony Controller also provides WAF event analytics, providing better visibility into security event across all the sites.
You can see the attack types that ever happened and protocol violations, time series events for both violations and the WAF… and also top GET information.
Transaction log is also available for WAF and you can confirm details of attack request and also top source violation type.
This example, shows the SQL injection attack event details.
That’s concludes A10 Polynimbus Secure Application Services demo. Thank you for watching.
