Forum Discussion

Altocumulus

Nov 06, 2014

ASM Policy Builder..

Hi Everyone, I am setting up and tunning ASM policy for one application. When i generate SQL injection attack on purpose it is detected on ASM, rated as risk 5, listed in Violations but still ra...

Cumulonimbus

Nov 06, 2014

To answer one question:

"If i click learn on each false positive and the accept it, will that make policy treat this type of request legal in future or only this request from that IP in that moment?"

The policy will treat the request as legal going forward for all requests. Sometimes there is some scope on this action, like "disable on parameters" which would only disable it if matched on a parameter(but not a header, or uri) Also if you have specific parameters/url's defined it can be applied to only those, and not to everything(wildcard parameter if it exists)

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

ASM Policy Builder..

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

How can I get started with iCall

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Related Content

Manage F5 BIG-IP Advanced WAF Policies with Terraform (Part 5 - Working with Policy Builder)

iRule based RADIUS Health Monitor Builder

ASM policy

AS3 for ASM Policy Creation

Compare two ASM Policies

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS