How to Integrate F5 Anti-Virus with Fortisandbox using ICAP
Helo! i have a question is there possible if i integrate Anti-Virus on F5 with Fortisandbox? Because, i will create an feature on web application for uploading file with xlsx and pdf format. I want to send the file for scanning on fortisandbox before pass to the server. ive read some article https://my.f5.com/manage/s/article/K70941653 but i still wondering, is it possible or not? thank you.
SNI Sites not taking correct certificate.
I have configured one VIP with two certificate aks.test.com aks4.test.com On SSL profile for aks.test.com i have enabled SNI feature and aks.test.com is working fine taking correct certificate (aks.test.com). but aks4.test.com having not secure error on browser and taking the certificate of (aks.test.com). Could someone please help what could be the issue in this case.
ASM Export JSON - size Limit ?
Hello, I'm trying to export an ASM Policy in json format through API I'm using theses Steps: - Start the export: https://{hostname}/mgmt/tm/asm/tasks/export-policy { "format": "json", "filename": "exported_file.json", "minimal": true, "policyReference": { "link": "https://localhost/mgmt/tm/asm/policies/{policyID}" } } - Waiting for the export to end - Download The export https://{hostname}//mgmt/tm/asm/file-transfer/downloads/exported_file.json The downloaded file is imcomplete, truncated and not usable if I try to import it Not sure if it the cause but the size of the file is 1Mo While if I export it manually through GUI it's 1,3Mo sized Also I've already modified the max_json_policy_size to 5Mo in the Security ›› Options : Application Security : Advanced Configuration : System Variables Because I had issues when importing the same policie. Is there some kind of limit for export ?F5 AWAF Policy learning phase opinion
Hello, Hope you are doing well! I am new to f5 AWAF and am wondering on what is the recommended way to protect and app published on the internet, afaik in the learning phase with transparent mode or blocking mode with staging enabled the attack won't be blocked. Since testing the app locally is not always an option, Is it optimal to set the policy into blocking mode/Enforce/disable learn only for the high attack signatures, at the same time i put other entities into staging (Cookies, URL, parameters, ...) with automatic policy building for learning ? What do you think ? at least i will be sure the high attack won't pass to the app. Thanks. Regards! Amine
