For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

WillCole_36171's avatar
WillCole_36171
Icon for Nimbostratus rankNimbostratus
Oct 17, 2011

first time user of application security manager. stupid question.

We have a license for the application security manager on our 6900 LTM pair but never turned it up because there wasn't a need at the time but now there's a move to enable it. However our web services...
app sec
BIG-IP Access Policy Manager (APM)
security
jwham20's avatar
jwham20
Icon for Nimbostratus rankNimbostratus
Oct 21, 2011
@WillCole,

 

 

Fun times! So the ASM can only be affective when it can read the traffic. So, if the traffic is being passed through the unit without ever being decrypted, the ASM won't be of much assistance. BUT, if you are using ssl offloading on the F5, that would mean that it decrypts (and possibly re-encrypts if you have a serverssl profile) the traffic. If that is occurring, then the ASM can read the traffic flowing through and provide some measure of protection.

 

 

So for brute force force protection, what version are you running?

 

 

--------

 

josh