Forum Discussion

Cirrus

Aug 23, 2022

Attack Signature Detected "Type="

Hello, I have some users that are receiving an F5 error page with a session ID. Looks like the WAF detected a false positive. I've included a screenshot of the violation. Has anyone come across this...

security

bcarreker

Cirrus

Aug 26, 2022

I ended up finding the solution.

Under "Security>Application Security>URLs>Allowed URLs>Allowed HTTP URLs", I added "type = application / script (Parameter) (2)" under the "Overriden Security Policy Settings"

This violation is no longer being triggered.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Attack Signature Detected "Type="

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Illegal Metacharacter in Parameter Name in Json Data

Cisco TACACS+ Config on ISE LTM Pair

Checking for X-Forwarded-For against an Address Data-Group

SSL Bridging and FQDN rewrite Policy

How can I get started with iCall

Related Content

Allow support of Grant Type "Client Credentials"

F5 Distributed Cloud JA4 detection for enhanced performance and detection

November Security Research Update: Newly Released Attack Signatures

NGINX App Protect v5 Signature Notifications

exclude HTTP::header value Content-Type] equals "text/xml; charset=utf-8" from SSL redirect

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS