For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Bryan_Lehr_1032's avatar
Bryan_Lehr_1032
Icon for Nimbostratus rankNimbostratus
Nov 29, 2006

Cookies and ASM

Hello,     I am trying to send a cookie directly to a pool w/o ASM inspection. The cookie name changes which prohibits me from simply adding it to allowed cookies. The name is "ASPSESSIONID*****...
application delivery
dev
devops
iRules
Bryan_Lehr_1032's avatar
Bryan_Lehr_1032
Icon for Nimbostratus rankNimbostratus
Nov 29, 2006
Hello,

 

 

This is working but not as expected, this is the second in a stack of 4 profiles, the first 2 match static content w/o application security and the next 2 match on URI with Application Security.

 

 

What seems to be happening is once this cookie is picked up, it consistently matches the second profile and you are now free of the ASM's constraints.

 

 

Suggestions? Looks like an iRule is needed.