Forum Discussion
NimbostratusF5 LTM and ASM one virtual server and multiple security policy
Hello, I have a LTM and ASM box runnning 11.4.0 HF5 , and i shall protect four https web applications behind it. I understand that I can use one virtual server for the four applications using SNI. In this version the HTTP class has been decprecated and replaced by Local Traffic Policy.
My question, how can I create seperate security policies for each application/website knowing that the security policy when it is being created, it uses one virtual server (in my case one VS serving four application).?????
Kindly, i appreciate any soultions/ideas and if it is even possible.
Regards, George
6 Replies
natheCirrocumulus
George,
You can create a new Policy (local traffic - Policies) and in the Rules section create rules to distinguish traffic e.g. hostname in host header for each app/website and under Actions add the specific ASM security policy for each.
Add this policy to the VS, under Resources.
Hope this helps/makes sense,
N
TortiCirrus
my information: at this time, f5 recommend to avoid policies with 11.4.x, if possible. ID (441636)
George_33482Thanks guys for the reply, @Torti please can you provide the link for the recommendation because i did not find this Solution id 441636. Regards,
- Tortiits no solution id, its an bug id. So, there is no information about that. You can only contact the f5 support to get informations about that.
- boneyard
MVP
but is there an alternative in 11.4 to using policies for enabling ASM? - TortiI don't know such a way. Because of that, I can't run on 11.4 or 11.5.
