nerdexam
Exams101Questions#166
F5

101 · Question #166

101 Question #166: Real Exam Question with Answer & Explanation

The correct answer is B: Attack signatures are not placed in staging. The BIG-IP ASM Policy Builder QA lab deployment scenario defaults to blocking mode with attack signatures immediately enforced, not staged.

Question

Which of the following are default settings when using the Policy Builder to build a security policy based on the QA lab deployment scenario? (Choose 2)

Options

  • AAll learned entities are placed in staging.
  • BAttack signatures are not placed in staging
  • CThe security policy is placed in blocking mode
  • DTightening is enabled only on file types and parameters.

Explanation

The BIG-IP ASM Policy Builder QA lab deployment scenario defaults to blocking mode with attack signatures immediately enforced, not staged.

Common mistakes.

  • A. In the QA lab scenario, learned entities such as URLs and parameters are placed directly into the enforced policy rather than staging, because QA traffic is assumed to be clean and representative.
  • D. Tightening in the QA lab scenario is applied broadly across all entity types, not restricted to only file types and parameters.

Concept tested. BIG-IP ASM Policy Builder QA lab scenario defaults

Reference. https://techdocs.f5.com/kb/en-us/products/big-ip-asm/manuals/product/asm-implementations-13-1-0/4.html

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 101 Practice