ASM - The difference between Real Traffic Policy Builder & Staging & Learn .
Hi All
Who can particular tell me about three configuration the "difference" and "relationship".
About their configuration path at ASM Web GUI:
(1)Security ›› Application Security : Policy Building : Settings -> "Real Traffic Policy Builder"
(2)Security ›› Application Security : URLs/Attack Signatures Configuration/Parameter .... ->"Perform Staging"
(3)Security ›› Application Security : Blocking : Settings -> "Learn"
Many Thanks
D.Luo
If an entity in "Blocking : Settings -> Learn" is set to be Learnt, then it will appear in "Manual traffic learning". Any of these can be accepted manually by the user into the policy and will then appear in "allowed url/file type/etc" menu.
ER menu is about manually activate rules into the policy which have been on staging period or automatically learnt by the RTPB. If you are in manual mode, they need to be enforced manually by the user. If you select Automatic poplicy (i.e. the RTPB), they will get enforced once RTPB decides it's time to do it.