Forum Discussion

Altostratus

Jun 20, 2016

illegal cookie length: ASM violation

HI ASM experts, I am seeing traffic getting blocked due to the "Illegal cookie length violation" . System configured: 8192 bytes, received 8452. I am running 11.5.1 HF7. I tried to increase the cook...

ASM Advanced WAF

security

Hannes_Rapp

Nimbostratus

Jun 20, 2016

8192 Is indeed the maximum and I think you only have 2 workarounds - disable the violation, or write a custom iRule. Disabling the violation itself would probably make the most sense here.

Go to policy blocking settings, and un-tick the 'learn/alarm/block' boxes under

Illegal cookie length

violation. Save and apply changes.

MSZ
Nimbostratus
Jul 23, 2017
What about 2048 bytes
Hannes_Rapp
Nimbostratus
Jul 23, 2017
@MSZ - Can't understand the question
MSZ
Nimbostratus
Jul 23, 2017
when I created the ASM policy longtime back I didn't notice the value of Max. cookie header length (It comes on Policy properties page). As per documentation it is any by default. But in my case I am able to see the value like 2048. I want to know how this value comes and where ?
Hannes_Rapp
Nimbostratus
Jul 23, 2017
What is the current ASM version, and was the software version same when the policy was first created? The defaults vary across versions. I'd speculate that you may have created the initial policy on software where the default was indeed 2K, and later upgraded to software where the default is any. In that scenario, your 2K config would be retained.
MSZ
Nimbostratus
Jul 24, 2017
Yes, the previous version was 11.6.1 and now its 13.0.0 Can we change the setting? Is it not harmful for the application?