Forum Discussion

Cirrus

Dec 17, 2015

F5 ASM To Protect APM Web Portal

Hello, I have an apm (web portal) for clients (ssl vpn). i would like to protect the portal using asm but i cant find a way to establish that. i know that if the virtual server has an acces...

ASM Advanced WAF

BIG-IP Access Policy Manager (APM)

iRules

security

Or_A_157009

Cirrus

Dec 18, 2015

Hey Kai,

ASM or any other WAF in from of the APM has it's added value since it has it's own signature mechanism and the ability to mitigate attacks which are not always included in the f5 apm module, such as Brute Force, CSRF and many others.

in my opinion it's adds another layer of security and visibility.

as to it's complex configuration, still haven't found a way to create such and i'm hoping one of the members here will have an idea of solving this.

Thanks Or.

johnebgood_2404

Nimbostratus

Nov 30, 2016

I have the same problem, I need end-to-end application attack visibility even in front of the APM module. As it stands we won't be able to tell what types of attacks are happening on the APM hosted pages and this is not acceptable. What are the issues with creating an ASM virtual server in front of the APM module or adding this as a feature? In my professional opinion it should be in front and not behind.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)