F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

Vincent_96223's avatar
Vincent_96223
Icon for Cirrus rankCirrus
Oct 21, 2013

Newbie ASM questions...

Greetings!   I've been using the LTM on F5 for awhile now, but my company is getting ready to commit to the use of ASM on our public facing servers. I am more of a network (L2/L3) kind of person,...
deployment
management
microsoft
security
Mike_Maher's avatar
Mike_Maher
Icon for Nimbostratus rankNimbostratus
Oct 21, 2013
Ok so the point of staging mode is to allow the ASM and its administrator to see what sort of traffic will pass through it. After the 7 days it will make suggestion and you will want to use those in conjuction with knowledge of the application behind the ASM to make the adjustments in the policy. Once you make a adjustment on a staged entity yes the staging period is restarted again to see if any other violations occur. The idea behind this is that after a while you should see no more suggestions. However if you have this deployed in a full production environment you may still see some due to people poking at your application from the outside looking for soft spots to attack. So you do need to have some knowledge of the application itself to know what is legitimate traffic and what is not if you are not in a "trusted" test environment. Are you using policy builder or it is just in Transparent mode and you are doing all manual learning? Mike