Forum Discussion

MVP

13 years ago

ASM violation: Modified domain cookie(s)

im getting this violation, from the info provided by the ASM it seems to happen when the cookie is first set, am i correct on that? it feels like this is a quite common thing to happen, is it some you...

app sec

BIG-IP Access Policy Manager (APM)

security

boneyard

MVP

13 years ago

i understand the risks of clients changing a cookie, but apparently it also is a regularly used way to achieve certain functionality right?

so is there some way for me to determine what is expected to be fine or not? or will this require having full understanding of what the cookie is used for?

and one final question, does this really only trigger when the cookie is changed by the client not when the cookie is first set by the server and then returned by the client?

Forum Discussion

ASM violation: Modified domain cookie(s)

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

"01020066:3: The requested Node (/Common/fqdn1) already exists in partition Common."

Bigip Restoration From Hardware to VM

DNS topology not distributing as expected

Unable to Forward APM and AFM Logs to AWS CloudWatch Using Telemetry Streaming

which virtual server will be hit?