Forum Discussion

Nimbostratus

Dec 27, 2011

Disable specific ASM attack signatures on specific URL?

I'm trying to disable some ASM attack signatures on a specific URL only, and not for the entire policy. Is that possible? I'm running v 10.2.3

app sec

BIG-IP Access Policy Manager (APM)

security

jwham20

Nimbostratus

Dec 27, 2011

Jesse,

The way I've found to do it (not my favorite) is to create a second HTTPclass that matches the specific url, and generate the second policy for it, with the signatures I want disabled turned off.

As for doing it within the same policy, I don't think there is a way, at least not in version 10. It might be something good to send to who ever your sales contact is as a request for enhancement.

Anyone found another way/better way to do it?

->josh

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Disable specific ASM attack signatures on specific URL?

Recent Discussions

how to whitelist new source IP on F5 web UI access

F5 to read a combined CRL file

Upgrade F5 BIGIP

ISP Load Balancing, SNAT pool instead of Automap link self-ip, anyway to do health check ?

MAC address of deleted VS IP address still responsive

Related Content

Attacks against Domain Specific Languages, EU Cybersecurity Laws, & Supply Chain Attacks

Disabling Specific Weak Cipher Suites

ASM irule to disable attack signature authorization header with specific value

find specific SNMP OID

NAT for specific IPs

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS