Forum Discussion

SteveD1979

Cirrostratus

Jan 16, 2024

Disabling ASM attack signature for file upload

Hello, We have an application where customers may attach files when they submit an enrollment. Sometimes the upload of these files are being blocked by our ASM policy because they are similar to a ...

application delivery

security

Enes_Afsin_Al

MVP

Jan 16, 2024

Hi SteveD1979,

The request body handling control can be disable by checking on the content-type or a different specific header value.

"Content-type: multipart/form-data" header is sent on file upload. It may has a different value based on the application.

SteveD1979

Cirrostratus

Feb 14, 2024

The filename can only be two different things. Is there a way to look at the payload and if it contains one of those file names allow the upload and keep the ASM policy in tact?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Disabling ASM attack signature for file upload

Welcome! a la Communidad DevCentral LATAM de F5!

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

Recent Discussions

R4800 snmp issues.

F5 XC JWKS auto update

PCI Compliance and ASM

irule for redirect and header injection

What happens if I activate only ASM without provisioning LTM?

Related Content

Mitigating JSON-based SQL injection with BIG-IP ASM / Advanced WAF Attack Signatures

ASM irule to disable attack signature authorization header with specific value

Wildcard Parameter signature attack

NGINX App Protect v5 Signature Notifications

Live Update- ASM attack signatures

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS