Forum Discussion
AltostratusASM allowed URLs with header based content
EmployeeAlex,
but I am not sure if this config. will help me since I already see an HTTP wildcard in this policy
An Explicit URL will always match before a wildcard URL, so /web/dataset/ will match in preference to the global wildcard.
would like to go in the option to permit this posts when the system finds the /web/dataset/* path in the URL ... and stop receiving violations when posts like this happen.
Creating an Explicit URL gives you the opportunity to tune the content profile, signature and metacharacter checks applied to that URL - it does not create a blanket pass for the URL.
Applying the correct content profile will make a big difference. However, it may not address issues such as HTTP protocol compliance failed, which are checks that are applied before URL-specific inspection.
If you need to completely bypass ASM policy inspection for a URL or apply a much less strict ASM Policy to those URLs, then you need to create a specific Local Traffic Policy to be applied to the virtual that that controls which ASM policy is applied for various URLs.
K22021244: Bypassing the BIG-IP ASM system (12.1.0 and later)
