Forum Discussion

Nimbostratus

Dec 13, 2017

ASM Policy Allow traversal detection evasion only for specific URL

Our application is flagging legitimate requests for directory traversals. Learning option is to allow for application. Is it possible to allow for just one URL? For example, if I were to create a ...

ASM Advanced WAF

security

Check1t_282465

Nimbostratus

Jan 12, 2018

Thanks for the response! And sorry for the late follow-up question. In this particular instance, could an irule unblock command be used for 12.X release if the block is due not because attack signature detected but rather Evasion Technique Detected - directory traversal? I know I could turn off in policy learning for policy, but only wish to turn off for specific URL.

Thanks again.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)