Forum Discussion
hooleylist
Jul 05, 2010Cirrostratus
Then this looks like it would work regardless of whether the request triggered a violation:
when HTTP_REQUEST_SEND {
log local0. "\[ASM::violation_data\]: [ASM::violation_data]"
clientside {
Insert a header in requests with the ASM Support ID
HTTP::header insert ASM-SUPPORT-ID [lindex [ASM::violation_data] 1]
log local0. "ASM-SUPPORT-ID: [HTTP::header ASM-SUPPORT-ID]"
}
}
Aaron