Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Icon for Nimbostratus rank

Nimbostratus

Oct 08, 2013

ASM adding unwanted cookie

Hi, we have a VS created in LTM with Default Persistence as universal & following iRule: when HTTP_REQUEST { if { [string tolower [HTTP::path]] starts_with "/abcd" } { pool...

application delivery

Romain_Dayan_83

Icon for Nimbostratus rank

Nimbostratus

Oct 08, 2013

Hi,

What is you ASM deployment mode ? If you can isolate this application on another security policy you can disable the ASM cookie feature only in this case.

I can warn you that the "TS*" cookie can be in lower case sometime but I don't know what will be the behavior of the ASM if the cookie is not present and the feature enabled.

Icon for Nimbostratus rank

Nimbostratus

Oct 09, 2013

Hi Romain, how to disable ASM cookie? I checked all options available; but no luck. At max it allows us to play with expiration timer, MD5 hash etc.

Jonathan - March 2026 Featured Member

DevCentral News

featured member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

DevCentral News

2026 F5 DevCentral MVP Announcement

DevCentral News

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5