Forum Discussion

Nimbostratus

Nov 14, 2024

ASM don't block attack XSS

hi all, I enabled all the XSS signatures and all signatures are state no staging. why the asm don't block this : <script>alert("attack")</script> It match to some Attack Signature ID : 200101609 ,...

Nacreous

did that <script>..... come in server response or client request?

asm wont block it if it comes from server response.

hoangnv

Nimbostratus

Nov 14, 2024

It's client request, and asm has score 4 for event log this.

Recent Discussions

NAT for specific IPs
Nov 14, 2024
Deena
VIP needed for many UDP ports
Solved
Nov 14, 2024
JD_Tomzak
remove ssh after gtm_add/bigip_add/big3d_add ?
Nov 14, 2024
Joseph_Bernard
What will be happen to live and existing connections when failover HA BIG IP active-standby
Nov 14, 2024
Zen_Y
Creating Policy using Terraform
Nov 14, 2024
chelusco

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

ASM don't block attack XSS

Recent Discussions

NAT for specific IPs

VIP needed for many UDP ports

remove ssh after gtm_add/bigip_add/big3d_add ?

What will be happen to live and existing connections when failover HA BIG IP active-standby

Creating Policy using Terraform

Related Content

The HTTP/2 CONTINUATION frame attack

ESRP Strategies: DNS Water Torture Attack

Blocking Zero-day WordPress Attacks with F5 Essential App Protect

Block Attack Vectors, Not Attackers

Real Attack Stories: Bank Gets DDoS Attacked

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS