Forum Discussion
CirrostratusASM policy for non http traffic
Hi,
We have created a non http (tcp) virtual server. This virtual server would listen on 888/tcp on the internet. We want to apply security policy to this virtual server (ASM policy). is it possible?
Regards
7 Replies
Hannes_RappNimbostratus
If it's not a HTTP or Websocket application, you can't use ASM.
2funky_105078Cirrus
What can you do with websocket in ASM? check files/URLs/parameters/etc?
- Hannes_Rapp
@2funky - Great question. As this feature was just introduced in BigIP ASM 12.1, the documentation part is not as good yet. Hopefully it will improve soon. Regardless, there's an article which gives you an idea of the features offered by ASM for WS traffic inspection. Have a look at the article here (scroll down to 1) : https://devcentral.f5.com/articles/the-top-ten-hardcore-f5-security-features-in-big-ip-121-19959
Hannes_Rapp_162Nacreous
If it's not a HTTP or Websocket application, you can't use ASM.
- 2funky_105078
What can you do with websocket in ASM? check files/URLs/parameters/etc?
- Hannes_Rapp_162
@2funky - Great question. As this feature was just introduced in BigIP ASM 12.1, the documentation part is not as good yet. Hopefully it will improve soon. Regardless, there's an article which gives you an idea of the features offered by ASM for WS traffic inspection. Have a look at the article here (scroll down to 1) : https://devcentral.f5.com/articles/the-top-ten-hardcore-f5-security-features-in-big-ip-121-19959
jgranieriASM only works on HTTP protocol so you wont be able to apply an ASM policy unless there is a HTTP profile.
