Big IP AWAF and Kubernetes

Hi,

Looking for some clarity or a specific technical document.

I have an existing Big IP virtual appliance

A "new" Kubernetes cluster (my knowledge is minimal)

A customer requirement is the cluster needs to be behind a WAF, OWASP compliant

Seemed logical to update the F5, to include the ASM module (on a higher spec appliance).

My assumption is:

Its just a case of creating a Virtual server in LTM

Creating a security policy and attaching to the LTM Virtual server

Is there anything other considerations or more importantly show stoppers

Thanks in advance

Simon