Disable Attack Signatures and RFC Compliance on Specific URL

Question

I would like to bypass a explicit URL from Attack Signatures and RFC Compliance checking.
For Example:
FQDN: 
URI: /testing/free&nbsp;
I created the explicit URL as /testing/free and in Advanced setting (Header-Based Content Profiles) 
default profile with any any and Request Body Handling: Do Nothing&nbsp;
It is not bypassing. &nbsp;

erik_novak · Answer

Which version of BIG-IP? You should be able to de-select the checkbox for "Check attack signatures on this URL." In the GUI, that tab should be near the Header-Based Content Profiles tab. There is no similar method to bypass RFC compliance checks--but you can leave the URL in staging so that no blocking will occur.

erik_novak · Answer

That's a separate violation based on the attributes of the file type. Can you accept the suggestion to add the file type "no_ext" and/or increase the query string length? &nbsp;

Forum Discussion

Disable Attack Signatures and RFC Compliance on Specific URL

Recent Discussions

Diameter iRules attachment?

Source IP F5 DNS Zone Forwarder

F5 BIG-IP

BIG-IP Oauth Client and AS

How to Renew F5 Device Certificate

Related Content

Maintaining BIG-IP's Golden Compliance Configuration in Financial Services

Making WAF Simple: Introducing the OWASP Compliance Dashboard

Decoding PCI-DSS v4.0: F5's Ridiculously Easy Guide to Technical Compliance

F5 BIG-IP Advanced WAF: OWASP Top 10 Application Security Risks 2021 Compliance Dashboard

Migrating F5 BIG-IP APM From Legacy NAC Service to Compliance Retrieval Service

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS