Forum Discussion
3 Replies
Sort By
- samstepCirrocumulus
ASM attack signatures are not stored in a file on BIG-IP - these are stored in the ASM's internal mySQL database.
- swo0sh_gt_13163Altostratus
Hello Folks,
I have just figured this out. You can get the internal ASM Signatures by generating as ASM QKview and looking for the following file.
ASM Qkview: nice -n19 asmqkview -s0 --add-proxy-log
Once the QKview is generated, open it in 7ZIP. On the root you will find the file name "asm_module.xml". Open it in any editor and look for the signature you want to analyze.
I have also opened a new thread at DC for the same, I think I would need to update it.
Cheers! Darshan
- swo0sh_gt_13163AltostratusHello Folks, It seems the file I am referring contains only USER-DEFINED signatures and not the default signatures come with the appliance. Sorry, my bad. Please share the solution if anyone finds.