Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

Security Policy textual configuration

Satoshino
Cirrus
Cirrus

‎02-Oct-2020 01:51 - last edited on ‎04-Jun-2023 21:16 by Fog

Hi everyone,

i would like to know if there is a way to see or extract Security Policy's fully configuration as textual in ASM using CLI, like this VS's configuration:

ltm virtual Test_Net_Acc_vs {
    destination 192.168.11.123:https
    ip-protocol tcp
    last-modified-time 2020-03-03:11:27:03
    mask 255.255.255.255
    profiles {
        APM_accessone { }
        Test_Net_Acc_cp {
            context clientside
        }
        f5portal_external_SSLClient {
            context clientside
        }
        http { }
        ppp { }
        rba { }
        rewrite { }
        tcp { }
        websso { }
    }
    source 0.0.0.0/0
    source-address-translation {
        type automap
    }
    translate-address enabled
    translate-port enabled
    vs-index 5

I had already tried to "list" the security policy but i receive only partial conf:

asm policy Al_SecPolicy {
    active
    app-service none
    blocking-mode disabled
    description "Rapid Deployment Policy"
    encoding utf-8
    parent-policy none
    partition Common
    policy-builder disabled
    policy-template POLICY_TEMPLATE_RAPID_DEPLOYMENT
    policy-type security
    virtual-servers {
        Al_vs
    }
}

Labels:
1 REPLY 1

Ivan_Chernenkii
F5 Employee
F5 Employee

‎02-Oct-2020 16:48

Hello,

 

No, there is no way to see full policy in tmsh, because only few basic policy settings are supported in tmsh.

But to get policy in textual human-readable view you can export it as XML or as JSON (this ability will appear starting from v16.1.0).

 

Thanks, Ivan

Copyright © 2023 Khoros, LLC