cancel
Showing results for 
Search instead for 
Did you mean: 
Login & Join the DevCentral Connects Group to watch the Recorded LiveStream (May 12) on Basic iControl Security - show notes included.

How to sync DoS and BotDefense in SyncOnly setup

NetCohort
Nimbostratus
Nimbostratus

Hi guys,

yes, I am aware of https://support.f5.com/csp/article/K22154255

 

But I have an ASM SyncOnly device group cause the ltm configuration differs (other datacenter/ other adressing scheme)

According to the article I have to enable a Snyc-failover group. What happens with my LTM configuration? It may synced as well, right?

How to workaround this? Why DoS and Bot Defense acting in a different way to the ASM Policy?

 

Thank uou in advance

1 REPLY 1

Sebastiansierra
Cirrostratus
Cirrostratus

Hi,

You need to create a sync-only group, not a failover group because you only going to use it for sync ASM Policy.

When you create the sync only group you need to assign it to ASM in the path:

Security ›› Options : Application Security : Synchronization : Application Security Synchronization

LTM configuration will not modified objects under /Common are only synced with the sync-failover.