Forum Discussion

Nimbostratus

Dec 11, 2017

Attack Signatures updates

Should I make policy on our firewall to permit any for F5-source-IP that be used to update attack signatures or there are list of IPs could be used as repository for these updates? Which recomme...

ASM Advanced WAF

security

Ashwin_Venkat

Employee

Dec 14, 2017

Hello Mahmoud,

If you are having the ASM perform signature updates automatically, then that would require your BIG-IP device to have internet connectivity either via the TMM interface or management interface. Depending on which route it takes, make sure you have the IP range and port 443 specified in this article: https://support.f5.com/csp/article/K15202 allowed through the firewall policy.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Attack Signatures updates

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

CVE mitigation on F5 XC vs classic F5 WAF

Could not communicate with the system. Try to reload page.

F5 XC 503 upstream_reset_before_response_started{protocol_error}

UCS Encryption Question

BIG-IP VE: 40G Throughput from 4x10G physical NICs

Related Content

Custom Attack Signatures

Live Update- ASM attack signatures

Are ASM Attack Signature Updates Cummulative?

Mitigating JSON-based SQL injection with BIG-IP ASM / Advanced WAF Attack Signatures

Wildcard Parameter signature attack

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS