Application Security Policy - Event Logs

Question

How do I tell if the events under Security --&gt; Event Logs --&gt; Application --&gt; Request are being permitted or blocked?How do I enable Response logging?What does it mean to Delete Request, Export Request, and Accept Request?  If the request is accepted does this permit this type request?
Thanks!&nbsp;

nathe · Answer

Johnnyx&nbsp;

Dependant on version there'll be an icon to quickly tell you whether the request has been blocked, for example. A blocked request is a red circle with a white line through it.&nbsp;

Enable Response Logging in a custom Logging profile&nbsp;

Delete means to get rid of the request altogether, export will export the details to a HTML file and Accept means ASM will add an entry into the policy which will allow the request. For example, to allow a disallowed metacharacter perhaps.

Hope this helps,&nbsp;
N&nbsp;

Forum Discussion

Application Security Policy - Event Logs

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

Application Security Policy - Learning and Building

traffic flow between IPI, application security policy, bot detection, DoS protection, irule, and geolocation

APM access policy in non Comon partition - not working

Security Policy textual configuration

Authentication via Azure AD blocked by Access policy

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS