For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

The BIG-IP Application Security Manager Part 2: Policy Building

This is the second article in a 10-part series on the BIG-IP Application Security Manager (ASM). The first article in this series discussed the basics of the BIG-IP ASM...what it is, why you need it,...
Published Sep 04, 2013
Version 1.0
ASM Advanced WAF
policy building
security
tech tip
Praveen_124385's avatar
Praveen_124385
Icon for Nimbostratus rankNimbostratus
Nov 11, 2013
Hello John,

 

 

Well written article. I have few questions.

 

1) When deploying ASM first time in production how can i leave it in transport mode? Is it not high risk?

 

2) I can not check signature staging also, as i observed even if policy is in block mode when i enable signature staging it does not blocks. How can i balance this in production, without signature staging i run a chance of false positive however with signature staging my application could be compromised without blocking.

 

 

Thank you.