Forum Discussion

Nimbostratus

Nov 24, 2015

Illegal Meta Character in Value

If we want to allow some meta character in value then we must unblock the "illegal meta character in value" from Blocking --> Setting --> Input violation. or it will work from selecting "allow...

Cirrocumulus

Nov 24, 2015

MSZ

You can do both, as both achieves the same goal. However, I wouldn't recommend turning off the illegal meta character violation, as that way all meta characters will be allowed and you're losing some of the inherent and configurable security that way.

Your second option disables the particular value for ALL parameters, again this will work but, my preference, would be (if you can) to manually add the parameter that is seeing the violation (false positive i assume) and allow the meta character on this parameter alone. This means you've loosened the security policy as little as possible to mitigate a false positive.

Hope this helps,

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Illegal Meta Character in Value

Recent Discussions

Updating all references to a particular object in F5 config

Should config via cli rather than gui?

iRule for client certificate verification and inserting CN

where can find silverline ddos protect config guide?

F5 iRule Proxy Protocol

Related Content

ASM Learning Fine Tuning (illegal meta characters in value)

HTTPS Routing based on Client Certificates values with F5 Distributed Cloud

With the ASM, can illegal requests be CSV exported?

Character Length for Object Names

‘Illegal parameter numeric value’ violation is getting triggered falsely

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS