F5 ASM Design

Question

Hi, &nbsp;
Web app on DMZ need F5 ASM because this web app can be accessed by public, so it can potentially be hacked. My question is does internal web app need F5 ASM for protection ? I need an answer based on security perpective.&nbsp;
Thanks&nbsp;

samstep · Answer

It depends on your requirements and policies. Any internal web app can still be hacked by insiders or by attackers who can get into your network via say an RDP hack. Most financial services organizations I worked in had their internal apps protected as a policy and best practice.

Forum Discussion

F5 ASM Design

1 Reply

Recent Discussions

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

F5 Access Guard Deprecated: ZTA APM

F5 loadbalancer not working

Pricing when used with aws waf

F5 terminal - help to run commands - disk space full

Related Content

Data Leaks, CISA Secure by Design AI, Citrix CVEs and More-Aug 13-19- F5 SIRT-This Week in Security

DNS/iQuery Question - Design Consideration

SMTP outbound F5 Design

Integrating OPSWAT MetaDefender with F5 Advanced WAF & BIG-IP ASM

Legacy ASM Templates