Forum Discussion
Danny_19714
Nimbostratus
Feb 01, 2008Zero-day exploits
I am currently researching the BIG-IP Web Application Firewall and have a question. Lets assume I have a web application running on IIS protected by BIG-IP and has the relevant iRules applied. Will BIG-IP automatically protect the web application from zero-day exploits or do iRules need to be created to defend against the exploit?
Thanks
Danny
- Danny_19714
Nimbostratus
Hi Aaron - hoolio
Cirrostratus
Hi Danny, - strongarm_46960
Nimbostratus
ASM does not protect against zero-day or OWASP top ten etc automatically you have to customise your policy by teaching ASM what should be allowed, ASM has negative & positive security model potential. however, initially, it's default deny whether you are in learning or blocking mode unitil you accept the request or responses. Either option in positive or negative security both involve learning and customizing the ASM, there nothing automatic from what I have seen thus far. - strongarm_46960
Nimbostratus
Sorry! I mean
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects