Forum Discussion

ghost-rider_124's avatar
ghost-rider_124
Icon for Nimbostratus rankNimbostratus
Jun 08, 2016
Solved

ASM Manual Learning Clarification

Hello   I enabled manual learning for web application (transparent mode). I enabled learning on illegal file, illegal parameter and illegal URL types in block settings. So I should get the learnin...
ASM Advanced WAF
security
  • Yann_Desmarest_'s avatar
    Yann_Desmarest_
    Jun 08, 2016

    Hi,

     

    You have 3 level of learning. And in any case you need the wildcard to be present in each entity of the security policy. You can remove the wildcard once you finished building your security policy.

     

Yann_Desmarest_'s avatar
Yann_Desmarest_
Icon for Nacreous rankNacreous
Jun 08, 2016

Hi,

 

You have 3 level of learning. And in any case you need the wildcard to be present in each entity of the security policy. You can remove the wildcard once you finished building your security policy.

 

  • ghost-rider_124's avatar
    ghost-rider_124
    Icon for Nimbostratus rankNimbostratus
    Jun 08, 2016
    I mean, If I do not create wildcard entity then it will not give me learning suggestion?
  • Yann_Desmarest_'s avatar
    Yann_Desmarest_
    Icon for Nacreous rankNacreous
    Jun 08, 2016
    If you are talking about the manual learning of entities, so yes you need the wildcard to be present on each entity. It's a feature to discover new urls, parameters, file types, etc.
  • Yann_Desmarest_'s avatar
    Yann_Desmarest_
    Icon for Nacreous rankNacreous
    Jun 08, 2016
    It's not the same as enforcement readiness that fine tune suggestions for signatures, lengths, etc.
  • ghost-rider_124's avatar
    ghost-rider_124
    Icon for Nimbostratus rankNimbostratus
    Jun 08, 2016
    thank you