P_Casoria_18761
Feb 16, 2015Nimbostratus
ASM module - efficacy testing
Hello everyone, I've deployed an F5 BIG-IP 2000s with LTM and ASM inside my architecture and I need to test the efficacy of Web Application Firewall (ASM module).
I've deployed "WebGoat" application and load-balanced all the traffic to it. The ASM policy was enabled and in blocking mode (staging not enabled). Then I used "Imperva WAF Testing Framework" to test the efficacy of the module.
RESULT: The traffic was logged, but no request was blocked.
How can I solve this? How can I really test the efficacy of my WAF configuration?
Thank you in advance.