Forum Discussion
Hi Randy,
You can assign only one ASM policy to a virtual server, not multiple.
What you could build is a layered/targeting virtual server setup. Your first virtual server will target a second "backend" virtual server instead of a pool for a specific application.
Based on host header/tls server name (use a traffic policy for this) the first virtual server will forward traffic to one of the "backend virtual servers" (Use IP addresses that the users can't reach for these virtual servers).
You can assign a ASM policy to each "backend" virtual server with the application specific security. (and a pool, application specific irules, profiles ect)
See this lightboard lesson on VIP Targeting VIP lightboard lesson
And this article for a example of the SNI routing traffic policy.
Cheers,
Kees