New BIG-IP ASM v13.1 Drupal v8 Ready Template_v6.1.2

Nir_Ashkenazi · ‎05-Mar-2018

F5 has created a specialized ASM template to simplify the configuration process of Drupal v8 with the new version of BIG-IP 13.x

Click here to access the .zip file that contains the template: Drupal v8 ASM Template for BIG-IP v13.x

Goal: Quick Drupal v8 base line policy which set to Blocking from Day-One tuned to Drupal v8 environment.

Ready Template Deployment Steps:

1. Download the policy zip file and extract the XML file from the link above

2. Update Attack Signature to the latest version: Click "Security Update" --> "Application Security" --> "Check for Updates" --> "Install Updates"

2. Click "Application Security" --> "Import Policy" --> Select File" and choose the XML file

3. Edit the policy name to the protected application name and click "Import Policy"

4. Attach the policy to the appropriate virtual server

5. Refine learning new records in "Application Security" --> "Policy Building" --> Traffic Learning"

6. Observe no false positive occur by validating event logs: "Event Logs" --> "Application" --> "Request"

Important: If the policy is not working properly, please ensure you are using the latest version. If you have any issues or questions, please send any feedback to my email: n.ashkenazi@f5.com

pascal_raemy · ‎16-Mar-2018

Hello, how do you install the AMS template?

thansk Pascal

Nir_Ashkenazi · ‎18-Mar-2018

Thanks Pascal for reaching out. the template should be imported via at the following path: Security --> Application Security --> Import Policy.

PatrickCox · ‎31-Jul-2019

Has this been tested in Big-IP ASM v14.1?

Patrick

Nir_Ashkenazi · ‎11-Aug-2019

Hi Patrick, the policy was validated on v13,1 but ASM support upgrading so I do not see issues

DevCentral

New BIG-IP ASM v13.1 Drupal v8 Ready Template_v6.1.2