NimbostratusHi
Just wondering if its possible to apply an ASM policy to a VIP that is using a port list rather than a specific service port ?
I recall previously I changed a VIP that had an ASM policy from a specific port to a port list but it was then throwing up an error.
Many Thanks
CirrostratusHi
You should be able to apply ASM policy to VS as long as are still using HTTP protocol.
If it is throwing, please post it here so we can review it.
Regards,
Nag
NimbostratusHi Nag, thanks for the reply.
Here is the error message it was giving back.
Configuration error: Virtual server (/Common/xxxxxx) with TMC or security ACL/NAT/IPI/DoS/Eviction/Scrubber/Blacklist Publisher configured cannot co-exist between them.
CirrusI see the same error when i try to use an address list as a destination in a virtual. ASM appears to want a specific IP destination
EmployeeIt looks like there is no issue in attaching ASM policy to such VS - it should work, while there is an issue with attaching logging profile to VS
Nimbostratusfirst check this: https://support.f5.com/csp/article/K22082255
then check this: https://cdn.f5.com/product/bugtracker/ID818737.html
finally try this: https://support.f5.com/csp/article/K28358628?utm_source=f5support&utm_medium=RSS
it helped me with attaching the logging profile
it also helped my customer when attempting to view/modify the security policies assigned to a VS generate an error "An error has occurred while trying to process your request"