Forum Discussion

Steve_88099's avatar
Steve_88099
Icon for Nimbostratus rankNimbostratus
Nov 08, 2011

ASM length of Illegal URL

Hi,     I'm new to working with ASM, I have a policy in blocking mode in our test environment and the error I'm researching is :   Request blocked, violations: Illegal URL length   ...
app sec
BIG-IP Access Policy Manager (APM)
security
Steve_88099's avatar
Steve_88099
Icon for Nimbostratus rankNimbostratus
Nov 17, 2011
For those who may stumble upon this thread, there are ASM features in addition to what Mike is referring to regarding file types.

 

 

The gory details are in Configuration Guide for Big-IP Application Security Manager, spread out over chapter 6 Manual Configuring Security Policy, and chapter 10 Working with parameters.

 

ASM has a very configurable and fine grained model to interrogate traffic before it gets to the application server.

 

 

The issue I ran into is my application created a relative URI that was longer than the default allowed and it was blocked.

 

To customize a rule that will allow a longer URI is a 2 step process:

 

Define a explicit URL.

 

Define a parameter linked to your URL with the length allowed.

 

 

Of course there a couple more details but that's what manuals are for ;-)