I'm working on an ACE WAF in standalone mode and found a problem. The built-in profiles for PCI and pass are missing, so I can not apply any policies, since all the xss, sql-injection, command injection, and other signatures are not there. I have tried to upgrade the appliance from version 6.0.2 to 6.0.3 but is the same.
I have previously worked with a cluster of 1 manager and 2 gateways and worked fine.
Is there a way to activiate those signature or profiles?
Thanks a lot for your answer. Yes that was the problem, the base configuration was not loaded, as you mentioned. But then found another problem, the Update Base Configuration button was missing too, so I was not able to upload the base config.
After verifying the files needed for the base configuration and other signature files that were missing, what fixed the problem was to delete the cluster created and generate a new one. I don't know if the first one was corrupted or something. Once with the new cluster the base config could be uploaded and worked fine.
Topology & Design:
Two ACI fabrics
Stretching VLANs using OTV
Both fabrics are advertising BD subnets into same routing domain
Some BDs(or say VLANs) are stretched, but some are not.
Endpoints can move betwee...
VMware Trunk Port Group is supported from ACI version 2.1
VMM integration must be configured properly
ASA device package must be uploaded to APIC
ASAv version must be compatible with ACI and device package version
Topology &Design:Traffic flow within same fabric:Endpoint moves to Fabric-2Bounce Entry Times OutTraffic Black-holedSummarySolutionAppendix:
In the Previous articles of ACI Automation, we are using Postman/Newman a...