4.2. Create WAF Parent PolicyΒΆ

Task 1 - Create a parent waf policy using info on table below:

Policy Name waf_Base
Policy Type Parent
Policy Template Rapid Deployment Policy
Learning Mode manual
Enforcement Mode Blocking
Signature Staging Disabled

  1. Select the Security->Application Security->Security Policies->Policies List page

  2. Click Create New Policy

  3. Select Advanced options

    ../../_images/image308.png

  4. Enter waf_base for Policy Name

  5. Select Parent for Policy Type

  6. Select Rapid Deployment Policy for Policy Template

  7. Select Manual for Learning Mode

  8. Change Enforcement Mode to Blocking

  9. Change Signature Staging to Disabled

    ../../_images/image309.png

  10. Click Create Policy

  11. Once the policy is created, with parent_policy selected, in the right panel click Inheritance Settings.

  12. Configure the following inheritance settings, and then click Save Changes

    ../../_images/image310.png

Note

Beginning in BIG-IP ASM 13.0.0, you can create a parent security policy and have child security policies refer to it (layered policies). A parent security policy defines common Policy Section elements and settings that provide baseline protection for your environment and are inherited by all child policies attached to it. You identify the elements and settings that can be modified in child security policies and those that are mandatory and cannot be modified. When you modify elements and settings in the parent security policy, the system rapidly applies them to all attached child policies.

Previous Next