Forum Discussion

Cirrus

Dec 17, 2015

F5 ASM To Protect APM Web Portal

Hello, I have an apm (web portal) for clients (ssl vpn). i would like to protect the portal using asm but i cant find a way to establish that. i know that if the virtual server has an acces...

ASM Advanced WAF

BIG-IP Access Policy Manager (APM)

irules

security

Kai_Wilke

MVP

Dec 18, 2015

Hi Or,

I read alot about HTTP profile enable virtuals in front of APM enabled virtuals in a vip-targeting-vip configuration, but afaik is this configuration somewhat complex and also seems to have certain limitatations.

Beside of the possibility to pull of that specific configuration trick, what is in your opinion the effective outcome of that approach? Is the ASM module more secure than the APM module? Why not use APM to filter out any anonymous request, before letting ASM parse the remaining attacks?

Cheers, Kai

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

F5 ASM To Protect APM Web Portal

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

F5 DNS Logs in JSON Format

APM - Portal access - Issue

How to configure ssh access by key on F5OS

ASM/AWAF declarative policy

Help with an iRule to disconnect active connections to Pool Members that are "offline"

Related Content

Knowledge sharing: Order of precedence for BIG-IP modules, ASM DDOS Protection, Bot Protection

Embedding APM Protected Resources into Third-Party Sites

L7 DoS Protection with NGINX App Protect DoS

Runtime API Security: From Visibility to Enforced Protection

F5 ICAP over SSL/TLS (Secure ICAP) with F5 ASM/AWAF Antivirus Protection feature

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS