Forum Discussion

Altostratus

Jul 17, 2019

Content-length Detected as 0; False detection ASM

There are many blocks that I can see for reason 'post request with content-length 0' but those are genuine requests. What could cause this false detection? Please guide

Altostratus

Jul 17, 2019

Yes so ASM treats this as a - HTTP Parser Attack, because the content length should be a positive number. If there are valid requests then disable - Content length should be a positive number under - HTTP protocol compliance.

smalex

Altostratus

Jul 17, 2019

We would not want to disable this check. I would like to know reason why it is detected as content 0 when it is actually not. It is a registration page and even when all fields are filled, page is detected as content 0.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Content-length Detected as 0; False detection ASM

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

CPU load when Prometheus is scraping metrics from F5 BIG-IP LTM

Connection Rate Limit with log output

syslog over tcp and define management IP as source

Managing iRules configuration

Recommendation for Adv. Lab

Related Content

LLM Prompt Injection Detection & Enforcement

F5 Distributed Cloud JA4 detection for enhanced performance and detection

Bidirectional Forwarding Detection (BFD) Protocol Cheat Sheet

SSL Orchestrator Advanced Use Cases: Detecting Generative AI

JA4 Part 2: Detecting and Mitigating Based on Dynamic JA4 Reputation

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS