For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Mahmoud_Eldeeb_

Icon for Cirrostratus rank

Cirrostratus

Apr 27, 2014

How to utilize ASM module in a better why?

How to utilize ASM module in a better why?

application delivery

ASM Advanced WAF

Icon for Employee rank

Employee

Apr 28, 2014

Sort of a generic question, but I'll offer 3 recommendations:

If your question is related to positive (default deny + learning) vs. negative (attack signatures) security models, then positive is the better choice.
If you don't really understand the application and it's potential vulnerabilities, then start off with a rapid deployment and let it learn the application over a few weeks. And pay close attention to what learning mode reports. You may learn some really interesting things about the apps in the process.
While ASM itself is relatively easy to configure, if you don't truly understand how the underlying applications work, and how they may be vulnerable, you may not get the best security policy that you could get otherwise. AppSec isn't rocket science, but it can get pretty close. So I would highly recommend taking a class or two on ASM, if for no other reason than to build a greater appreciation for the power it wields.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 Architecture Track Sessions - AppWorld 2026

DevCentral News

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5