For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Rajit_171155's avatar
Rajit_171155
Icon for Nimbostratus rankNimbostratus
Sep 22, 2014

Best practices for attack signature update/maintenance on ASM

We are looking for suggestions regarding best practices for attack signature update/maintenance on ASM in an university environment. We would like to have inputs for the following questions   How...
ASM Advanced WAF
management
security
Thomas_Gobet's avatar
Thomas_Gobet
Icon for Nimbostratus rankNimbostratus
Sep 24, 2014

I think there isn't any step by step documentation to do that by policy.

 

What you have is updating process by platform.

 

The only thing which is different is you have to update manually your policy with only what you want to activate. One problem would be on modification during your QA tests.

 

If you want to modify your prod policy it will load changes from your attack signatures update.

 

Rajit_171155's avatar
Rajit_171155
Icon for Nimbostratus rankNimbostratus
Sep 25, 2014
I would appreciate if you could elaborate more on how to update the policy manually. We have two exactly similar policy one for QA environment and for Prod. Once I update the attach signature ( security>options>attack signature update) how can I push the updates to the policies? I am not able to find any options in the menu to apply the attack signature updates to individual policy. Running code 11.2 and 11.5.1