Forum Discussion

Nimbostratus

Sep 25, 2007

CRSF Vulnerability

Not sure where the ASM Module Forum is -- but wondering if anyone has tried to prevent Cross Site Request Forgery through iRules or know if F5 is developing a solution for ASM. There is wha...

config

design

hoolio

Cirrostratus

Oct 02, 2007

I'll add that ASM is designed to protect against XSRF, XSS (and many other) attacks using both positive and negative validation of requests. There are character sets which define valid characters in parameter names, parameter values, headers and the object. There are a set of default regular expressions against these same components which validate the request does not contain malicious patterns. Custom regexes can be added as well. ASM also enforces length restrictions which limit how big the total request, header, parameter and parameter values can be.

iRules can help provide good specific security. ASM provides a more comprehensive package of validations and protection. I would imagine you could talk with an F5 salesperson to get more specifics on ASM.

Aaron

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

CRSF Vulnerability

Jeff - May 2026 Featured F5er

AppWorld Berlin 2026 – iRules Contest Winning Results

One Quick Step to Make your website AI-Agent/MCP Ready with an iRule

Recent Discussions

APM URL encoding Hardening?

Trial License for F5 virtual edition in eve-ng

certitcate error

about create wide ip,

Dynamic import of data groups

Related Content

OpenSSH vulnerability

Mitigating Log4j Vulnerability using F5 BIG-IP

Coordinated Vulnerability Disclosure: A Balanced Approach

ImageTragick - ImageMagick Remote Code Execution Vulnerability

Plesk Vulnerability

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS