Forum Discussion

Nimbostratus

Oct 05, 2018

ASM application security synchronization

When we are talking about an HA environment of two Big IPs with LTM and ASM operating, what would be the difference of the conventional configuration synchronization configuration for the application...

application delivery

ASM Advanced WAF

Simon_Blakely

Employee

Oct 08, 2018

Did you verify that the actual ASM Policy content was synced, or was it just the policy name attached to an empty policy?

An ASM policy consists of an entry in the

bigip.conf

, which just tells mcpd that there is an ASM policy of that name, and an ASM database entry.

If mcpd sees ASM policy names in

bigip.conf

without the matching ASM database policy data, the policies will be auto-created as empty (and transparent) ASM policies.

The actual policy configuration settings are stored by ASM in a mysql database - this is what is managed by ASM policy synchronization.

I suspect that you managed to sync the policy names but not the Policy settings.

Of course, it could be a new issue.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

ASM application security synchronization

Recent Discussions

f5 command document

Default retry time inband monitor

Retain the URL on Browser

Priority group activation on GTM.

Nginx Plus LB as backend node member on F5 LTM

Related Content

Applicaton security logs stopped

Security Advisory Status

Deploy an App into Kubernetes Using Advanced Application Services

Application Services 3 not working - getting 404

Synchronize my custom Dashboards with all my device

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS