nerdexam
Exams101Questions#511
F5

101 · Question #511

101 Question #511: Real Exam Question with Answer & Explanation

The correct answer is A: ASM. F5 ASM (Application Security Manager) is the module that provides WAF capabilities, including protection against XSS attacks. The other F5 modules serve different purposes unrelated to application-layer attack mitigation.

Question

An administrator needs to protect a web application from cross-site scripting (CSS) exploits. Which F5 protocol provide this functionality?

Options

  • AASM
  • BAPM
  • CAFM
  • DGTM

Explanation

F5 ASM (Application Security Manager) is the module that provides WAF capabilities, including protection against XSS attacks. The other F5 modules serve different purposes unrelated to application-layer attack mitigation.

Common mistakes.

  • B. APM (Access Policy Manager) handles identity-based access control, SSO, and VPN - it does not perform application attack inspection.
  • C. AFM (Advanced Firewall Manager) is a network-layer firewall for traffic filtering at Layers 3-4, not an application-layer WAF.
  • D. GTM (Global Traffic Manager) is a DNS-based global load balancing solution and has no application security inspection functionality.

Concept tested. F5 ASM WAF cross-site scripting protection

Reference. https://techdocs.f5.com/en-us/bigip-15-1-0/big-ip-asm-implementations.html

Community Discussion

No community discussion yet for this question.

Sign up to join the discussion
Full 101 Practice