ASM

Question

is the ASM has the ability to protect the published web site from the defacement? if yes I Need the steps please .&nbsp;

nitass · Answer

have you seen asm series article which John has written? below is one of them.&nbsp;
The BIG-IP Application Security Manager Part 2: Policy Building by John Wagnon&nbsp;
https://devcentral.f5.com/articles/the-big-ip-application-security-manager-part-2-policy-building.UmP43G0-bIU&nbsp;
hope this helps.&nbsp;

mike_maher · Answer

The ASM has a lot of ability and various ways to perform protection.  I also would recommend reading the series written by John Wagon.  It was a 10 part series and goes through some of the various levels of protection. Also you may want to for some white papers and read through them as well.  &nbsp;
Just at a high level here are some of the things you can do with ASM.&nbsp;
Restrict access to only certian file types, URLs and parameters (as well as checking the input for those parameters)Utilize Attack Signatures to check for known malicious trafficCheck for malformed traffic by using HTTP ComplianceLook Evasion TechniquesProvide DoS protectionLook for Web Scraping, XSS, and clickjackingGeoLocation restriction and IP Reputation (the later requires extra licensing)
Really if you build a solid white listing policy and re enforce that with the negative security checking of Attack Sigantures, Anomaly Detection, and IP restriction you can limit your exposure to most attacks.    &nbsp;

Forum Discussion

ASM

2 Replies

Recent Discussions

Port Group on F5OS network setting

F5Access | MacOS Sonoma

Rewrite uri translation not working

Chrome V 124+ on MacOS - Virtual Server Access Issue

Transaction looks successful but file not downloading

Related Content

ASM logs

ASM LOGS

File upload and ASM

File Uploads and ASM

From ASM to Advanced WAF: Advancing your Application Security