Forum Discussion

Nimbostratus

Aug 24, 2016

Does an "automatic policy" start blocking right away?

I created an automatic policy for a prod server and after going through all of the recommended settings and applying it, I noticed that it said it was in blocking mode (which I don't want until it is...

Altostratus

Aug 24, 2016

If a security policy is in blocking mode there is the possibility that ASM may block some traffic right from the start. While attack signatures and allowed entities (file types, urls, etc) need to be enforced (staging disabled) before ASM will block related traffic there are other elements in a security policy which have no staging capability. Examples: RFC Compliance violations, allowed HTTP methods, allowed response codes. If these violations are set to Block on the Blocking Settings list and the Enforcement Mode=Blocking then ASM will block traffic that triggers these violations.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Does an "automatic policy" start blocking right away?

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

block a specific user

which virtual server will be hit?

[ASM] : "Request length exceeds defined buffer size " - How to increase the limit ?

APM - Portal access - Issue

F5 bot defense - false positives

Related Content

Logging/Blocking possible prompt injection

How I did it - "Application authentication with Verizon ID and F5 Access Policy Manager"

Service Extensions with SSL Orchestrator: Advanced Blocking Pages

Block IP after a number of ASM Blocks

Icontrol REST upload and apply policy- section "http-protocols" ignored?

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS