Forum Discussion

Nimbostratus

Mar 28, 2012

Generating Traffic Learnings through Explore scans

Hello All / Aaron, To generate useful learning traffic (becasue say the site is not really used) , Is it a good idea to run a web app scan in the "Explore Mode". This will access every url...

config

design

hooleylist

Cirrostratus

Mar 28, 2012

Hi Nik,

I generally don't define every URL for a web app in a policy. I define the filetypes and lock down the metacharacters for URLs and the rest of the charsets. I then define explicit URLs if there are is a character set violation for a URL. If there are odd metacharacters in the URLs, then a crawl of the site might help. Or if you have a lot of filetypes it would help to run the crawler.

Are you able to put the policy in transparent mode on a production virtual server that does receive traffic?

Aaron

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Generating Traffic Learnings through Explore scans

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

Generate API SDK for F5 Distributed Cloud

fellow traffic

Objectif of Learning mode in ASM

Machine learning is nothing new; the BIG-IP ASM system has been learning for more than a decade

iRules Runtime Calculator Spreadsheet Generator

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS