Forum Discussion

Nimbostratus

Feb 09, 2010

How to handle ASM in HTTP_CLASSes

Hi. We're having some issues setting up our ASM, as it behaves quite strangely. First, I'll try to explain our setup: We have various VirtualServers (VS) and we use HTTP_C...

app sec

BIG-IP Access Policy Manager (APM)

security

hoolio

Cirrostratus

Feb 12, 2010

Hi Markus,

Thanks for clarifying. If you want to do pool selection and use ASM validate the traffic, you can enable ASM on each HTTP class. This would require separate ASM web apps for each class. If you want to use one policy for all of the web apps, you'd need to manually export and import the policy between web apps. This would be a nuisance from a management perspective.

Another option would be to use a single HTTP class with ASM enabled and no filters. All traffic would match this class. You could then use an iRule to do the pool selection. You can do pool selection in the HTTP_CLASSS_SELECTED event.

Aaron

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

How to handle ASM in HTTP_CLASSes

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

VIP control across data centers - how to ensure only 1 VIP is up at a time?

FQDN Node Configuration

Logical Disk Full to Migrate rSeries

Priority Group Activation is not working

Changes to DO and AS3 GitHub - no longer monitored

Related Content

Intermediate iRules: Handling Strings

Double Trouble: Multiple Controllers Handling the Same Kubernetes LoadBalancer Service

Intermediate iRules: Handling Lists

AI Security : Prompt Injection and Insecure Output Handling.

Handling HTTP Requests on an HTTPS Virtual Server

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS