How to configure a F5 ASM policy and link it to an LTM policy via tmsh

Question

Hi &nbsp;
I have managed to create an ASM policy via tmsh (  BIG-IP 11.6.0 Build 0.0.401 Final ) &nbsp;
create asm policy test-asm-policy { active encoding utf-8 blocking-mode enabled policy  }  
&nbsp;
But when I tried and link this to an LTM policy , I get this &nbsp;
root@(gefela)(cfg-sync Standalone)(Active)(/Common)(tmos) create ltm policy test-ltm-asm-policy { controls add {asm} requires add { http } rules add { default { actions add { 1 { asm enabled policy test-asm-policy } } } strategy first-match
Syntax Error: "enabled" unknown property&nbsp;
Is there anything that I am missing ? &nbsp;

gefela_153763 · Answer

I tried this after creating the asm policy 
create ltm policy test-ltm-asm-policy controls add { asm } requires add { http } strategy first-match &nbsp;
modify ltm policy test-ltm-asm-policy rules add { default { actions add { 1 { asm enable policy test-asm-policy }} ordinal 1 } } strategy first-match &nbsp;

andrew78 · Answer

This worked for me:
create ltm policy asm_auto_17_policy__VIP_NAME controls add { asm } rules add { default { actions add { 1 { asm enable policy /PARTITION_NAME/ASM_POLICY_NAME} } ordinal 1 } } strategy /Common/first-match legacy

Forum Discussion

How to configure a F5 ASM policy and link it to an LTM policy via tmsh

2 Replies

Recent Discussions

ASM instance creation

[ASM] - what is "Browser Challange file" ?

[ASM] - HTML5 Cross-Domain Request Enforcement - CLI command

Reverse Proxy Not Behaving

Stable Firmware for F5

Related Content

Auditing Security Policy Updates

Minimizing Security Complexity: Managing Distributed WAF Policies

LTM Policy

WAF Policy Editor - a Web-Based Tool to Configure a Declarative WAF Policy

Access policy, LTM policy and iRules