Direct F5 licensing & ASM updates from MGMT interface

Question

Hello Sirs,&nbsp;Kindly i need to enable my F5 to direct licensing traffic &amp; ASM updates to be sourced from MGMT interface as all data interfaces are in isolated network.&nbsp;Version : 13.1.3.4&nbsp;Thanks in advance,

daniel_wolf · Answer

Hi Eslam,&nbsp;you should add a management route following the instructions in K13284: Overview of management interface routing. If your ASM is behind a firewall, you should allow access to callhome.f5.com:443 and activate.f5.com:443 (and eventually do DNS servers), so that the ASM can obtain the Live Updates.&nbsp;KR&nbsp;Edit: Copy and Paste from K82512024:The BIG-IP ASM system consults the Traffic Management Microkernel (TMM) and Linux routing tables when requesting attack signature updates using the Automatic Method. The source IP address of the resulting traffic uses either a non-floating self IP address or the management IP address, depending on the matching route.

Forum Discussion

Direct F5 licensing & ASM updates from MGMT interface

1 Reply

Recent Discussions

F5 Rseries HA

Error when running bigip_command Playbook against LTM : Syntax Error: unexpected argument /bin/sh\n

Can iRule be used to perform exception of IPI category based on Geolocation

Can iRule mask the payload content on event logs of security

minimum tmos software version for connect CIS (openshift)

Related Content

Auditing Security Policy Updates

DEVCENTRAL END-USER LICENSE AGREEMENT

Application Programming Interface (API) Authentication types simplified

F5 License

Update your DevCentral user profile