For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

ghost-rider_124's avatar
ghost-rider_124
Icon for Nimbostratus rankNimbostratus
Jun 07, 2015
Solved

How to increase the size of upload file size in ASM

Hello Experts   How to increase the upload file size in ASM? I am using 11.2.1  
ASM Advanced WAF
deployment
security
  • Pascal_Tene_910's avatar
    Pascal_Tene_910
    Jun 08, 2015

    You can apply the following iRule to your virtual server: The "/upload" is in the path of the file you are uploading. Note that ASM is disable when uploading and malicious files could be uploaded in this particular location without detection...

     

    ++++++++++++++++ when HTTP_REQUEST { if {[HTTP::uri] contains "/upload" } { ASM::disable log local0. "ASM disabled." } else { ASM::enable /Common/ log local0. "ASM enabled. Current ASM policy is [ASM::policy]" } } +++++++++++++++++++

     

Pascal_Tene_910's avatar
Pascal_Tene_910
Historic F5 Account
Jun 10, 2015

All solutions I have seen so far will either increase the upload limit globally, or disable ASM for a specific URI as shown in the irule. The iRule can be enhanced to do other checks, like only disabling ASM for some trusted IP addresses,..etc.

 

  • ghost-rider_124's avatar
    ghost-rider_124
    Icon for Nimbostratus rankNimbostratus
    Jun 10, 2015
    Thanks Pascal. Can you give me that IRULE to disable ASM for trusted IP. Appreciated