Forum Discussion

Nimbostratus

Feb 25, 2018

ASM- CSRF protection.

Dears, We are encountering an issue with CSRF protection after upgrading to version 13.0.0 HF3, noting that we didn't have the issue in version 12.1.2. The CSRF protection is breaking a you...

ASM Advanced WAF

security

nathe

Cirrocumulus

Feb 25, 2018

I'm not aware of any known change in behaviour and according to the askf5 solution article. Did you say you haven't configured any URLs? I understand you do need to. Perhaps v13 enforces this more fully than v12.

I would also check the release notes of v13 and, specifically, the known issues section. Search for csrf and see if v13 has introduced a bug perhaps.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

ASM- CSRF protection.

Recent Discussions

Reporting Help Needed

Switch ssl profile based on weak cipher detection via IRULE

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

full-proxy HTTP2

Related Content

How To Protect Your Applications from Cross Site Request Forgery (CSRF) with F5 Distributed Cloud

Knowledge sharing: Order of precedence for BIG-IP modules, ASM DDOS Protection, Bot Protection

F5 ICAP over SSL/TLS (Secure ICAP) with F5 ASM/AWAF Antivirus Protection feature

L7 DoS Protection with NGINX App Protect DoS

Beyond REST: Protecting GraphQL

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS