The Application Security Manager™ (ASM) module on the F5 WAF has policy
settings that determine how the WAF behaves.
Although these policy settings are automatically configured when you create the WAF, you can
log in to BIG-IP®
Configuration utility and change them. You should not
change settings unless you are familiar with ASM™. For more information about
ASM, see the Changing Security Policy Settings
chapter in the BIG-IP
Application Security Manager: Implementations
Important: Wait approximately five minutes after the WAF is
created before making changes to the associated ASM security policy.