Forum Discussion
Cirrostratusbigip version 17
where i can find the list of allowed file type in bigip version 17 ?
In BIG-IP version 17, you can find and manage the list of allowed file types within the security policy settings. Here’s how you can access and modify these settings:
- Access Security Policy:
- Navigate to Security > Application Security > File Types in the BIG-IP Configuration utility.
- View Allowed File Types:
- The Allowed File Types screen will display the current list of file types that are permitted by the security policy.
- Add or Modify File Types:
- To add a new file type, click Create and specify the file type (e.g., JPG, HTML) or use wildcard expressions (e.g., *.html).
- You can also set length constraints for URL, request, query string, and POST data associated with the file type.
- Automatic Policy Building:
- If you are using automatic policy building, the system will suggest file types based on legitimate traffic during the enforcement readiness period.
- Disallowed File Types:
- You can also specify disallowed file types to prevent access to sensitive files like server-side scripts, configuration files, and executables.
For more detailed instructions, you can refer to the F5 documentation on managing file types.
[1]: Adding File Types to a Security Policy [2]: Manage File Types
References- Access Security Policy:
In BIG-IP version 17, you can find and manage the list of allowed file types within the security policy settings. Here’s how you can access and modify these settings:
- Access Security Policy:
- Navigate to Security > Application Security > File Types in the BIG-IP Configuration utility.
- View Allowed File Types:
- The Allowed File Types screen will display the current list of file types that are permitted by the security policy.
- Add or Modify File Types:
- To add a new file type, click Create and specify the file type (e.g., JPG, HTML) or use wildcard expressions (e.g., *.html).
- You can also set length constraints for URL, request, query string, and POST data associated with the file type.
- Automatic Policy Building:
- If you are using automatic policy building, the system will suggest file types based on legitimate traffic during the enforcement readiness period.
- Disallowed File Types:
- You can also specify disallowed file types to prevent access to sensitive files like server-side scripts, configuration files, and executables.
For more detailed instructions, you can refer to the F5 documentation on managing file types.
[1]: Adding File Types to a Security Policy [2]: Manage File Types
References- Access Security Policy:
- MoFaz
Moderator
Hi THE_BLUE , if you are referring to ASM/WAF, this may vary depending on your version and navigation preferences. But generally, the way to find the list of allowed types is by,
- Login to the BIG-IP Management GUI
Open a browser and log in to the BIG-IP GUI using the management IP address or hostname. For example:
https://<BIG-IP-MGMT-IP>
Enter your credentials to access the configuration utility. - Navigate to File Types in the ASM Policy
Once logged in, on the Main tab, click Security > Application Security > File Types > The Allowed File Types screen opens.
You can read more here, Manual Chapter : Adding Entities to a Security Policy
- Login to the BIG-IP Management GUI
