F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

Grant_32901's avatar
Grant_32901
Icon for Nimbostratus rankNimbostratus
Jan 11, 2011

ASM question - checking blocked words

Hi,     I am a bit of an ASM newbie. I am trying to check out an ASM violation we are getting that is preventing users from entering information into a form.   ...
app sec
BIG-IP Access Policy Manager (APM)
security
hoolio's avatar
hoolio
Icon for Cirrostratus rankCirrostratus
Jan 11, 2011
Hi Grant,

 

 

Here are steps you can use to get details on the attack signature:

 

 

Navigate in the GUI to Application Security | Reporting | Requests

 

expand the filter list

 

enter the Support ID in the Support ID filter

 

click search

 

click on the requested URL for the returned record

 

click on Attack signature detected

 

in the popup, click the 'View details...' link

 

 

The portion of the request which matched the attack signature should be highlighted in red.

 

 

You can get the attack signature name from the /var/log/asm log file as well.

 

 

Aaron