Lab 1.3: Creation of ASM Policies via Importing JSON Files

1.3.1 Open Visual Studio Code by clicking on the icon shown below:

../../_images/Lab2-1.png

1.3.2 Once Visual Studio Code is open, you’ll see a collection on the left titled ‘UDF_WAF_CICD’ with several items underneath:

../../_images/Lab2-2.png

1.3.4 Click on ‘secops_waf_policy_1.json’ and review the configuration of the file.

../../_images/Lab2-3.png

1. Import into the BIG-IP.

2. Navigate to ‘Security ›› Application Security : Security Policies : Policies List’

a. click on the ‘…’ next to ‘Create’ and select ‘Import Policy’:

../../_images/Lab2-4.png

b. Navigate to the Desktop and select the ‘waf301’ folder

../../_images/Lab2-5.png

c. Select the ‘udf_waf_cicd’ folder:

../../_images/Lab2-6.png

d. Select the ‘secops_waf_polic_1.json’ file and select ‘Open’ in the BIG-Ip:

../../_images/Lab2-7.png

e. Select ‘Import’

../../_images/Lab2-8.png

f. You’ll now see a policy imported called ‘secops_waf_policy’.

1.3.5 Return to Visual Studio Code and select the ‘secops_waf_policy_2.json’

a. Review the declaration:

../../_images/Lab2-9.png

b. Notice that the declaration is identical to the ‘secops_waf_policy_1.json’ file with some modifications. In this declaration, you’ll notice that the change is to allow the ‘403’ response code in the Advanced WAF policy at the bottom.

c. Import into the BIG-IP following the same steps previously used in step 1.3.4 above.

1.3.6 You’ll now see two polices called:

‘secops_waf_policy’

and

‘secops_waf_policy_2’

../../_images/Lab2-10.png