Arthur_7109
Jan 25, 2012Nimbostratus
HTTP::header insert does not work in ASM_REQUEST_VIOLATION?
Hi guys,
This is just in a test environment, and I don't want to open a case with F5.
We have BIG-IP 10.2.1 Build 296.0 Final and it may be limited to this release.
We have these irules
when ASM_REQUEST_VIOLATION {
HTTP::header insert "X-CSRF-VIOLATION" "Smurf"
log local0. "ASM_REQUEST_VIOLATION on [HTTP::uri]"
log local0. "Header value is [HTTP::header X-CSRF-VIOLATION]"
}
when HTTP_RESPONSE {
log local0. "Header value is [HTTP::header X-CSRF-VIOLATION]"
}
and the syslogs are
Jan 25 15:27:07 local/tmm info tmm[4918]: Rule ir_test_CSRF < ASM_REQUEST_VIOLATION >: ASM_REQUEST_VIOLATION on /portal/contactblock.asp?module=pcbbinfo
Jan 25 15:27:07 local/tmm info tmm[4918]: Rule ir_test_CSRF < ASM_REQUEST_VIOLATION >: Header value is Smurf
Jan 25 15:27:07 local/tmm info tmm[4918]: Rule ir_test_CSRF < HTTP_RESPONSE >: Header value is
It appears that the new header is not inserted (and it is not seen in the browser either).
So it looks like the "HTTP::header insert" in ASM_REQUEST_VIOLATION does not "stick"?
Arthur