HTTP Security Profiles and ASM Overlap

Question

Good afternoon all,&nbsp;
I'm just wondering about how http security profiles fit into the BIG-IP offering as a whole in relation to the ASM security profile. The entire http_security profile is an overlap of the capabilities of ASM but it is attachable at the vs lvl. &nbsp;
My initial though is that it fulfills two requirements:&nbsp;
To  protect non-ASM deployments with standard http compliance if you have AFM licensed.To offer a defense in depth tiered architecture in which AFM/LTM is scrubbing traffic before being forwarded to an LTM/ASM box.Defense in depth.
Am I missing something here or am I accurate in my assumptions?&nbsp;

boneyard · Answer

that is pretty much my feeling also. it started from somewhere probably and found its place in AFM. nice for a start, but if you need an actual WAF you need ASM.&nbsp;

Forum Discussion

HTTP Security Profiles and ASM Overlap

1 Reply

Recent Discussions

Import PKCS 12 SSL to Device Certificate via API/Script or CLI on BIG-IP

Help with URL Masking

F5 iRule to replace host to path

Chrome V 124+ on MacOS - Virtual Server Access Issue

F5 Rseries R2600 Tenant sizing

Related Content

Overlapped Networks Question

Using ChatGPT for security and introduction of AI security

Auditing Security Policy Updates

HTTP Multipart and Security Implications

Using Distributed Application Security Policies in Secure Multicloud Networking Customer Edge Sites