Forum Discussion

Nimbostratus

Nov 14, 2014

ASM deployment architecture

Hello, I'm trying to find about deployment architectures for ASM but I don't find anything. I'm comparing with other solutions like securesphere, fortiweb, etc and I guess some operation modes (...

Cumulonimbus

Nov 17, 2014

I would recommend talking directly to F5 sales, but to my knowledge the ASM cannot run in a sniffer mode, and does not offer a fail open option. It is an active participant in the conversation, so the options you are asking about really aren't applicable. The options you are describing are more in-line with an IDS/IPS type solution. The ASM is more like an L7 firewall. Imagine running your primary firewall as fail open or on a sniffer port, the same applies here, it just doesn't work like that.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)