Deploy BIG-IP ASM for API Application
My Manager informed me that we need to configure BIG-IP LTM and ASM for API application, what is the API application for F5? Is this different in implementation from normal web application or it is the same?
Can you support me with guide or implementation example?
Also, if i will implement this for testbed first, Can I copy the ASM policy for production or must make the production policy in learning and transparent mode also?
The swagger file will contains all information related to the service, so you can just start checking the event logs for any violations matching with the application, and then tune the policy accodingly.
If you copied the policy, it will copy all its entities only if you have applied all changes on the old policy. But the learning suggestions will not be copied.
So you can go with the test enviornment first and create it in the learning mode, and when everythign is stable, you can import the same policy in the production enviornment, and start monitoring the policy.