F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

Steve_88099's avatar
Steve_88099
Icon for Nimbostratus rankNimbostratus
Nov 08, 2011

ASM length of Illegal URL

Hi,     I'm new to working with ASM, I have a policy in blocking mode in our test environment and the error I'm researching is :   Request blocked, violations: Illegal URL length   ...
app sec
BIG-IP Access Policy Manager (APM)
security
Mike_Maher's avatar
Mike_Maher
Icon for Nimbostratus rankNimbostratus
Nov 17, 2011
Hmmmm..... I am not sure you can do that, because the URL length control is under to File Type not the specific URL, so you would be adjusting the entire .do file type category. The only way I could think of to do what you are asking, is to create another HTTP Class/Policy for just that URL. You can go and create an HTTP Class and then Check the box that says URI Paths, select Match Only in the drop down box and put in /AdminCategories.do. Then you can configure the URL length specically for that URL. Obviously this is a bit messy in that you now have a separate policy for just the one URL, but you keep an edge on the security. Honestly though I would probably just adjust the URL Length for .do in the main policy and call it a day, as long as your back end server/application is configured well and can handle other .do URLs of the same length there is really not much of a concern.

 

 

Mike