Forum Discussion
MVPHow can k8s CIS CRD VirtualServer reference existing APM Access profile?
Hi Nikoolayy1 ,
Update: I looked through some example Policy CRD's and this one looks like it might be what you are after? https://github.com/F5Networks/k8s-bigip-ctlr/blob/master/docs/config_examples/customResource/Policy/policy-with-profileAccess.yaml
apiVersion: cis.f5.com/v1
kind: Policy
metadata:
labels:
f5cr: "true"
name: cr-policy1
namespace: default
spec:
l7Policies:
profileAccess: /Common/prof-access
policyPerRequestAccess: /Common/per-req-pol
waf: /Common/WAF_Policy1I will assume you know how to add a policy and link to it? Can you shoot me a message if this works for you?
MVPHey MichaelOLeary will test it with APM access as I have enough resources just for f5 asm/awaf at the moment but I did test it with waf and it worked.
If I see issues I will open a case under git. Just to ask if APM/Access api-protection profile can be applied the same way?
Other interesting question is if there is F5 AS3 declaration called "policy" as I think the CIS CRD should match 1 to 1 with AS3 declarations in the backend but I could not find it.
