How to sync DoS and BotDefense in SyncOnly setup

Question

Hi guys,yes, I am aware of https://support.f5.com/csp/article/K22154255&nbsp;But I have an ASM SyncOnly device group cause the ltm configuration differs (other datacenter/ other adressing scheme)According to the article I have to enable a Snyc-failover group. What happens with my LTM configuration? It may synced as well, right?How to workaround this? Why DoS and Bot Defense acting in a different way to the ASM Policy? &nbsp;Thank uou in advance

sebastiansierra · Answer

Hi,You need to create a sync-only group, not a failover group because you only going to use it for sync ASM Policy.When you create the sync only group you need to assign it to ASM in the path:Security&nbsp;››&nbsp;Options&nbsp;:&nbsp;Application Security&nbsp;:&nbsp;Synchronization&nbsp;:&nbsp;Application Security SynchronizationLTM configuration will not modified&nbsp;objects under&nbsp;/Common&nbsp;are only synced with the&nbsp;sync-failover.

Forum Discussion

How to sync DoS and BotDefense in SyncOnly setup

1 Reply

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Managing iRules configuration

CPU load when Prometheus is scraping metrics from F5 BIG-IP LTM

[ASM] - How to disable the SQL injection attack signatures

Illigal Parameter addition as custom signature set wanted to Unblock

[ASM] : "Request length exceeds defined buffer size " - How to increase the limit ?

Related Content

F5 Botdefense behind Cloudflare

Less than 60 seconds lab setup

Force BotDefense Captcha on Specified URL

How to Setup Shape Log Analysis in Fastly

PowerShell Setup Snapin

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS