Documentation
Below please find the operating system requirements, quick install scripts and deployment instructions.
Cassandra Requirements:
- Docker Desktop | MAC OSX 10.8+ | Redhat OS, RockyOS, CentOS | Ubuntu 20.04 LTS or later recommended (Intel / AMD64)
- HTTPS access to each device from this machine
IP Reputation (BIGIP AFM ONLY) - Quick install script
Copy and paste the following command into the terminal of your machine. This will download the install script which sets up all required files and libraries to use Cassandra. From there you will need to work with an Account Manager or Sales Engineer to acquire user credentials.
curl -k -o "install_cassandra_iprep.sh" "https://feedlists.magnetoai.com/install_cassandra_iprep.txt" && chmod u+x install_cassandra_iprep.sh && sudo ./install_cassandra_iprep.sh
URL-Reputation (BIGIP SSLO ONLY) - Quick install script Classic edition
Copy and paste the following command into the terminal of your machine. This will download the install script which sets up all required files and libraries to use Cassandra.From there you will need to work with an Account Manager or Sales Engineer to acquire user credentials. This script will create a scheduled update that will run the container at a random time between 4:00am - 4:30am every morning (local time), which will push out the URL updates for each managed device. If your use-case is to have more frequent updates, you can modify the entry in crontab.
curl -k -o "install_cassandra_sslo_docker.sh" "https://feedlists.magnetoai.com/install_cassandra_sslo_docker.txt" && chmod u+x install_cassandra_sslo_docker.sh && sudo ./install_cassandra_sslo_docker.sh
URL-Reputation (BIGIP SSLO ONLY) (Cloud Manager ) - with Data-Groups - Quick install script - Latest!
Copy and paste the following command into the terminal of your machine. This will download the install script which sets up all required files and libraries to use Cassandra. From there you will need to work with an Account Manager or Sales Engineer to acquire user credentials.
curl -k -o "install_cassandra_sslo_docker_cm_dg.sh" "https://feedlists.magnetoai.com/install_cassandra_sslo_docker_cm_dg.txt" && chmod u+x install_cassandra_sslo_docker_cm_dg.sh && sudo ./install_cassandra_sslo_docker_cm_dg.sh
The following `iRule` will access the data-groups 'blocked_ips_general' and 'blocked_ips_sensitive' deployed by the container.
when CLIENT_ACCEPTED {
set client_ip [IP::client_addr]
# Check if client IP is in either blocked data group
if {
[class match $client_ip equals blocked_ips_general] ||
[class match $client_ip equals blocked_ips_sensitive]
} then {
log local0. "Blocked IP: $client_ip matched a block list"
reject
return
}
# Allow only known good IPs (optional: whitelist logic)
if { ![class match $client_ip equals allowed_ips] } {
log local0. "Connection denied: $client_ip not in allowed_ips"
reject
return
}
# Optional: log allowed connection
log local0. "Connection allowed: $client_ip"
}
Allowed Applications IP's and URL's (Whitelists)
Due to a number of networking reasons, there are various apps that don't get along nicely with SSL decrypt, inspection then re-encrypt. Due to this, we provide 2 allow lists during the provision process. While we provide these lists, you are in no way required to allow them to be used to bypass content. The following lists are: "Allowed_Application_IPs" and "Allowed_Application_URLs". "Allowed_Application_URLs" will only be applied to users using the URL Rep or SSL Decryption modules.
Current Applications in list
- Microsoft Office 365
- Zoom Video Conference
- Cisco Webex
