nerdexam
Exams101Questions#263
F5

101 · Question #263

101 Question #263: Real Exam Question with Answer & Explanation

The correct answer is A: Attack signatures. When using the Fundamental policy type, BIG-IP ASM Policy Builder learns and enforces attack signatures and HTTP protocol compliance, providing baseline protection without deep application modeling.

Question

When choosing Fundamental as the Policy Builder security policy type, BIG-IP ASM will learn and enforce the following components? (Choose 2)

Options

  • AAttack signatures
  • BGlobal parameters
  • CHTTP protocol compliance
  • DURLs and meta characters

Explanation

When using the Fundamental policy type, BIG-IP ASM Policy Builder learns and enforces attack signatures and HTTP protocol compliance, providing baseline protection without deep application modeling.

Common mistakes.

  • B. Global parameters are a component learned and enforced by the Comprehensive policy type, which builds a full application model including parameter names, values, and data types.
  • D. URLs and meta characters are learned and enforced under the Comprehensive policy type, which performs deeper application learning by observing and allowlisting specific application URLs.

Concept tested. BIG-IP ASM Policy Builder Fundamental security policy components

Reference. https://techdocs.f5.com/en-us/bigip-16-1-0/big-ip-asm-getting-started/about-policy-builder-and-automatic-policy-building.html

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 101 Practice