Forum Discussion
Mahmoud_El-Say1
Nimbostratus
NimbostratusAttack Signatures updates
Should I make policy on our firewall to permit any for F5-source-IP that be used to update attack signatures or there are list of IPs could be used as repository for these updates?
Which recomme...
Ashwin_Venkat
Employee
EmployeeHello Mahmoud,
If you are having the ASM perform signature updates automatically, then that would require your BIG-IP device to have internet connectivity either via the TMM interface or management interface. Depending on which route it takes, make sure you have the IP range and port 443 specified in this article: https://support.f5.com/csp/article/K15202 allowed through the firewall policy.
