For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

JWhitesPro_1928's avatar
JWhitesPro_1928
Icon for Cirrostratus rankCirrostratus
Jul 05, 2016

AFM Rule Evaluation

It seems in the back of my mind I am forgetting why this happens but I have an ACL similar to this, in this order:   1 - Allow tcp/443 from particular sources (some address lists, geo-ip etc) (act...
AFM
security
Chris_Grant's avatar
Chris_Grant
Icon for Employee rankEmployee
Jul 05, 2016
The short answer is that it depends. I am assuming that you are applying these as global rules. Have you enabled logging to see what is being logged? Try taking a capture on the AFM and make sure that you have the rule configured for the actual traffic the box is seeing. If you are hitting default, I would expect it to start being blocked if you switch to firewall mode.