Forum Discussion

Cirrus

Feb 26, 2021

3rd party vulnerability scan

Hi Experts, I'd like to get some help with another issue. We have this new 3rd party vendor that will be scanning the webservices hosted in LTM. The Big-IP also runs with ASM. We tested ...

Cirrus

Mar 02, 2021

Hi Pete, sorry for late response. We actually tested again focused on 1 specific website and confirmed that the scanner is able to hit the main page of the website. However the scan will stop. Base from the ASM we see some events from scanner to VS hitting some page. It looks like the real server is the one causing some issues. Not too sure if its a permission issue. Any idea what we need to adjust on the real server end?

boneyard

MVP

Mar 02, 2021

the webservices work fine for users i assume?

it sounds very much like a scanner issue, if you use it without F5 and or without ASM does it function fine? if not then talk with the scanner people and understand why it "stops".

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

3rd party vulnerability scan

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

F5 BIG IP laboratory license

After upgrading from PeopleTools 8.59.11 to 8.61.11 F5 APM is not rewriting the internal URLs

F5 mssql health monitor failing

How can I get started with iCall

Connection Rest f5

Related Content

OWASP Automated Threats - OAT-014 Vulnerability Scanning

Introducing F5 Distributed Cloud Web App Scanning

Increased Security With First Party Cookies

Advanced iRules: Scan

OpenSSH vulnerability

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS