AFM Rule issue

Question

Hello All,&nbsp;
I have configure the AFM module but My Rule not working or match .&nbsp;
My scenario below.&nbsp;
My back-end server connect to F5 1.3 interface. Between Server &amp; F5 having One TOR. My client connect to F5 on 1.4 interface directly .&nbsp;
For Internal connectivity we configure VLAN 251 with respective Self IP as well as for client external VLAN configure 4094 with respective Self IP.&nbsp;
we create one Forwarding IP 0.0.0.0/0 &amp; on this VS apply AFM policy. &nbsp;
within policy two rules are there one is accept for 192.168.20.21 IP &amp; second is reject for 192.168.20.22.&nbsp;
when my client ping to backend server its ping. but in AFM policy count not increasing. That means my  AFM rule not match.&nbsp;
Kindly me to solve or configuration help for the same.&nbsp;

stanislas_piro2 · Answer

Hi,&nbsp;
How is configured the virtual server protocol? TCP, UDP, *&nbsp;
Did you unchecked icmp in virtual address 0.0.0.0/0&nbsp;

surajsah · Answer

Hi,
Can you check the whether 
1.you have assigned correct interface to vs and snat automap disable. 
2. Whether you have applied rule globally. 
3. Any route domain or specific partition you are using
4. Try to enable the logging&nbsp;
thanks&nbsp;

Forum Discussion

AFM Rule issue

Recent Discussions

Oracle JDBC SSL Termination failing on F5

APM for banner and cert

An Irule for Client Ssl Profile that Allows Unassigned TLS Extension Values (17516)

How to Renew F5 Device Certificate

How to export a list of paired external service providers from APM?

Related Content

AFM Protocol Inspection rules for CVE-2022-3602 (aka SpookySSL)

Logging all AFM Rules

Configuring BIG-IP AFM firewall policies and rules with Ansible

AFM not logging firewall rules

Enriching AFM with public domain Threat Intelligence

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS