Forum Discussion

Altostratus

Jul 17, 2019

Content-length Detected as 0; False detection ASM

There are many blocks that I can see for reason 'post request with content-length 0' but those are genuine requests. What could cause this false detection? Please guide

Altostratus

Jul 17, 2019

Yes so ASM treats this as a - HTTP Parser Attack, because the content length should be a positive number. If there are valid requests then disable - Content length should be a positive number under - HTTP protocol compliance.

smalex

Altostratus

Jul 17, 2019

We would not want to disable this check. I would like to know reason why it is detected as content 0 when it is actually not. It is a registration page and even when all fields are filled, page is detected as content 0.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Content-length Detected as 0; False detection ASM

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

After upgrading from PeopleTools 8.59.11 to 8.61.11 F5 APM is not rewriting the internal URLs

F5 BIG IP laboratory license

F5 mssql health monitor failing

How can I get started with iCall

Connection Rest f5

Related Content

F5 Distributed Cloud JA4 detection for enhanced performance and detection

SSL Orchestrator Advanced Use Cases: Detecting Generative AI

Bidirectional Forwarding Detection (BFD) Protocol Cheat Sheet

JA4 Part 2: Detecting and Mitigating Based on Dynamic JA4 Reputation

Operationlizing Online Fraud Detection, Prevention, and Response

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS