Forum Discussion

Nimbostratus

Dec 11, 2017

Attack Signatures updates

Should I make policy on our firewall to permit any for F5-source-IP that be used to update attack signatures or there are list of IPs could be used as repository for these updates? Which recomme...

ASM Advanced WAF

security

Ashwin_Venkat

Employee

Dec 14, 2017

Hello Mahmoud,

If you are having the ASM perform signature updates automatically, then that would require your BIG-IP device to have internet connectivity either via the TMM interface or management interface. Depending on which route it takes, make sure you have the IP range and port 443 specified in this article: https://support.f5.com/csp/article/K15202 allowed through the firewall policy.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Attack Signatures updates

Jeff - May 2026 Featured F5er

AppWorld Berlin 2026 – iRules Contest Winning Results

One Quick Step to Make your website AI-Agent/MCP Ready with an iRule

Recent Discussions

certitcate error

Layered ASM for APM login page protection

migrate from serie I to R. Cluster LTM-GTM

APM URL encoding Hardening?

Trial License for F5 virtual edition in eve-ng

Related Content

November Security Research Update: Newly Released Attack Signatures

Live Update- ASM attack signatures

Custom Attack Signatures

Are ASM Attack Signature Updates Cummulative?

Mitigating JSON-based SQL injection with BIG-IP ASM / Advanced WAF Attack Signatures

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS