Forum Discussion

Dusty_Rah_32760's avatar
Dusty_Rah_32760
Icon for Nimbostratus rankNimbostratus
Jul 18, 2017

Image upload disallowed by F5 load balancer

We have a page where users upload image and a JavaScript library is being used to POST it to the web server through F5. The content type used during post is application/octet-stream and its getting picked up by F5 as a security threat.

 

Does anyone know what content types F5 considers to be safe?

 

BIG-IP
devops
security
  • Jad_Tabbara__J1's avatar
    Jad_Tabbara__J1
    Icon for Cirrostratus rankCirrostratus
    Jul 19, 2017

    Hello Rah,

     

    Do you have ASM activated on your BIG-IP ?

     

    If it is the ASM module that blocks the upload, which violation is triged ?

     

    With ASM you can define how to act with each request depending on "Content-Type" header.

     

    Regards