Forum Discussion

Altostratus

Oct 16, 2024

F5 not Identifying Parameter in Text/Plain Upload

In a webkit: content disposition header, name="file" ; filename="EXAMPLE DOCUMENT 2024.txt" Content-type: text/plain Document data example system ( The issue is that there is already a par...

MVP

Oct 17, 2024

text format doesnt mean it's safe.
for example, sql injection attack, credit card data theft, etc. are also text.

for your case, you can create local traffic policy to disable asm or set specific asm policy for the upload file traffic.

and btw, content disposition header is usually for http response, not request.
that might be the cause why asm block that http upload request
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Content-Disposition

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

F5 not Identifying Parameter in Text/Plain Upload

Security Best Practices for F5 Products

F5 AppWorld 2026 Registration - early bird pricing.

Kostas Injeyan - October 2025 Featured Member

Recent Discussions

HA Failover between two Datacenters

AST Configuration Assistance

Identify which virtual servers are using a specific SSL certificate

APM VPN LDAP POOL can't contact ldap server.

Users account sessions mixed up..

Related Content

Can't identify cookie

How to Identify and Manage Scrapers (Pt. 2)

How to Identify and Manage Scrapers (Pt. 1)

Help... APM logs are displayed on browser as plain text

Brute Force protection for single parameter like OTP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS