Forum Discussion

Nimbostratus

Apr 25, 2019

log illegal requests in ASM policy transparent mode

If we have an ASM policy applied on a virtualserver in transparent mode, no request is treated as "Illegal request". Hence we can't see what is blocked. We want to know what WOULD be blocked if ...

Employee

Apr 30, 2019

OOTB functionality is illustrated in the screenshot above. If you selected Log illegal requests and assigned it to the virtual server it should work. It sounds like maybe you have created a custom logging profile, which is fine. If you have a custom profile you need to assign it to the virtual server in the same way. Can you try sending a request you know is illegal, perhaps by triggering a simple attack signature? If you go to the Learning and Blocking Settings page, do any of the violations, especially attack signature violations, have the "Alarm" check box selected?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

log illegal requests in ASM policy transparent mode

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

F5 Academies Are Back – And We’re Coming to a City Near You

Recent Discussions

Sending an HTTP request from iRule without delaying client requests

In F5 APM, how to include multiple DNS suffix?

Issue while migrating config from 4000s to r4600

Username is not filled in EdgeClient in the Modern customization

Cert Bundle Manager

Related Content

Transparent load balancing in Azure, Part 2

Transparent Load Balancing in Azure

Integrating SSL Orchestrator with McAfee Web Gateway-Transparent Proxy

Fileless Malware, Anti-Cheat Transparency, & NGINX OSS Security Policy

iRules Recipe 2: Transparent Request Target Rewriting

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS