Forum Discussion
Abed_AL-R
Cirrostratus
CirrostratusManaging many WAF policies
Hello guys My question is more likely to be administrative question, and less technical. And I need some advices on this. We're managing so many WAF policies for so many websites. About 50+ policie...
Abed_AL-RCirrostratus
CirrostratusFirst, thanks for your reply.
Second, I have not mentioned the conversations between us and the developers. Of course we always check the security before accepting there acceptance. Developers will always say 'yes accept this', and by always I mean literally always. So we envolve other ways and security staff to doublecheck there answers.
But what I'm asking here is, if we have about 50+ policies, and each days there many so many suggestions, beside ignoring repeatative suggestions and fine tuning the policy to not suggest unnecessary suggestions, is there another creative approache for make it easy for us to manage those suggestions.
For example yesterday I found two nice CLI command that I could make a scheduled script to sent by mail to us the output of those commands. This will save us maybe 10-15 minutes check each day 🙂
https://clouddocs.f5.com/cli/tmsh-reference/v15/modules/analytics/analytics_asm-learning-suggestions_report.html
I hope now my question is much clear.