Forum Discussion

Cirrocumulus

Mar 03, 2021

Solved

Http requests with the question mark symbol "?" in the URL are not being blocked although disallowed in the URL character list

Hi; Http requests with the question mark symbol "?" in the URL are not being blocked although "?" isdisallowed in the URL character list. for example http://www.xyx.com/?/file.extension ...

aws

security

Simon_Blakely

Employee

Mar 03, 2021

That question-mark isn't part of the URL - it is the Query Separator.

The URL is /

The Query String is /file.extension

Query string

Recent Discussions

f5 r5600 appliance issue with adding trunk to vlan
May 11, 2026
kbk4912
SSL Forward Proxy, iRules and Client Hello
May 11, 2026
kuroki
Errors with AS3 3.56.0 with F5 17.5.1.6
May 10, 2026
Juergen_Mang
F5 ASM/AWAF – violations logged but no learning suggestions generated
May 09, 2026
A_hassanein
F5 VELOS Backplane Inter-Tenants Communication
May 09, 2026
Saad_Deif

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Http requests with the question mark symbol "?" in the URL are not being blocked although disallowed in the URL character list

Recent Discussions

f5 r5600 appliance issue with adding trunk to vlan

SSL Forward Proxy, iRules and Client Hello

Errors with AS3 3.56.0 with F5 17.5.1.6

F5 ASM/AWAF – violations logged but no learning suggestions generated

F5 VELOS Backplane Inter-Tenants Communication

Related Content

F5 BIG-IP Advanced WAF – "dos profile" reporting

How I did it.....again "High-Performance S3 Load Balancing with F5 BIG-IP"

How I did it - "F5 BIG-IP Observability with Dynatrace and F5 Telemetry Streaming"

How I Did It - "Decoupling Access Points from CloudVision AGNI with a BIG‑IP RADIUS Proxy"

How I did it - "High-Performance S3 Load Balancing of Dell ObjectScale with F5 BIG-IP"

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS