The Signature files panel in BIG-IQ® Web Application Security lists the signature files for each discovered BIG-IP® device, and enables you to view signature file properties, edit signature settings, update signature files, and push them to BIG-IP devices.
Currently, administrators can manage signature files for one BIG-IP device from the BIG-IP Configuration Utility.
BIG-IQ Web Application Security, however, provides central management for signature files and signature file updates for multiple devices. By managing signatures from the BIG-IQ platform, the administrator can spend less time on signature updates and view the signatures update information in a single central location.
The BIG-IP system includes an attack signature pool and a bot signature pool. These pools include the system-supplied attack signatures and bot signatures, which are shipped with the BIG-IP Application Security Manager, and any user-defined signatures.
BIG-IQ Web Application Security fetches all new and relevant signature files automatically from an external server proxy configured from the system interface. It then pushes the signatures to the relevant BIG-IP device or to multiple BIG-IP devices. It displays the signature version for each device.
Signature file properties are read-only and displayed for informational purposes only.
|File name||Name of the signature file. Example: ASM-SignatureFile_20150917_152714.im|
|File version||Version of the signature file. Example: 1445276000000|
|Product version||Version running on the BIG-IP® device.|
If a signature file is pushed to a clustered system, the configuration of the nodes is synchronized. The ASM™ configuration is deployed to the active device and then synchronized with the standby device.