ASM suggestions: Allowing Meta character on URL or globally

Question

Hi Everyone,&nbsp;
I'm getting two different suggestions for the illegal metacharacter in URL (same char in both), one of them is suggesting to allow the metacharacter on URL level, the other is suggesting to allow the same metacharacter but in the URL character set, the only difference is that the second suggestion has the manual accept only sign.&nbsp;
Keep in mind I only have one wildcard URL(*), so the suggestions must be related to the same URL.&nbsp;
is this behavior expected? 
aren't both suggestions the same given my situation?
what is the best practice in general?
what does the manual accept indicate? &nbsp;
extra info:
version 12.1.2 
policy type automatic&nbsp;

eey0re · Answer

If you have just one URL, the * wildcard, then yes - overriding that meta character on the URL is functionally the same as overriding it in the character set.
I'm not sure there is a best practice in this situation. It comes down to whether you think you may add more specific URLs in future and if so, whether you will want this meta character to be allowed on those too.

Forum Discussion

ASM suggestions: Allowing Meta character on URL or globally

Recent Discussions

Background Tasks

Which process is consuming higher CPU

SSL bridging without SSL proxy forward

Big-IP VE edition for MacBook M4 Chip

Client SSL Profile set to Require Client Certificate breaks RDP in APM

Related Content

Define allowed character in ASM for JSON parameter

Allow French characters on ASM

allow one url from blocks geolocation

Character Length for Object Names

ASM - Adding Allowed URL's via CLI in 2023

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS