is changing the value of ecard_max_http_req_uri_len has any risk?

Question

hello everyone,the value of&nbsp;ecard_max_http_req_uri_len in our ASM is set to the default of 2048, and one of the applications we have got blocked for exceeding the length, so we increase it to 2096 and after some time they got blocked too so we increase it again to 2144, now they are getting blocked again, so I want to increase it more but i'm wondering if it has any security issue, I tried looking for answer but no clear answer, the closest I got was it may consume more resorces from ASM,&nbsp;so I need to know if I can increase it without having any issue in security or performance.Thanks.&nbsp;

juergen_mang · Answer

Follow this recommendation: https://my.f5.com/manage/s/article/K53257013
Or even better: Ask the developers how long the requests uri's could be and set the variable accordingly.

Forum Discussion

is changing the value of ecard_max_http_req_uri_len has any risk?

Recent Discussions

self-directed requests fail because of no certificate

Decode ObjectSID from Base64-encode string

iRule - Url rewrite and header replace and pool selection not working

ip x-forwarding

F5 ASM API-Protection Policy

Related Content

iRules variables in BIG-IP Next: behavior change

HTTPS Routing based on Client Certificates values with F5 Distributed Cloud

Change admin account

Parsing F5 BIG-IP LTM DNS profile statistics and extracting values with Python

Audit WAF changes

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS