For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

OM's avatar
OM
Icon for Altocumulus rankAltocumulus
May 31, 2018

asm rejects packets with policy in transparent mode

Hi, I am loadbalancing 2 vmware security servers (gateway) for vmware client view (vdi). I have an ASM policy in transparent mode, and the requests are still getting rejected without logs. I have no ...
application delivery
ASM Advanced WAF
security
Erik_Novak's avatar
Erik_Novak
Icon for Employee rankEmployee
Jun 01, 2018

If the policy is in transparent mode, and if blocking is disabled for all violations, then there must be some other existing condition that is causing the issue. Is there anything other than the ASM policy applied to the virtual server? Do you have any other profiles applied to the virtual server, or are you using a mitigation that injects JavaScript into responses--think web scraping and/or proactive bot defense. Can you verify that packets are traveling from the client to the BIG-IP? Do you have SNAT/Auto Map configured on the virtual server?