Forum Discussion

Nimbostratus

Jun 10, 2016

Manual Traffic Learning -> Malformed JSON Data: How to handle this?

Hi, i created an ASM policy in blocking mode with a json profile. Sometimes I have a few illegal requests in Security > Event Logs > Application > Requests with "Malformed JSON Data" violation. ...

Employee

Jun 14, 2016

Hello raischk, it may not be available for all violations but normally you can access violating payload in the event logs by : cliking on the violation name in the request event, it opens violation details then click in view details. this shows you for example when a signature match the payload concerned.

now for that type of encoding problem, not sure we can report precisely on it.

the policy building menue you quote is giving you the opportunity to deactivate this violation to let the traffic pass as it seems to be a false positive for you.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Manual Traffic Learning -> Malformed JSON Data: How to handle this?

Recent Discussions

Which process is consuming higher CPU

F5 Health Monitor Receive String as JSON

Background Tasks

SSL bridging without SSL proxy forward

Big-IP VE edition for MacBook M4 Chip

Related Content

fellow traffic

Objectif of Learning mode in ASM

WAF Learning speed

Managing Kubernetes Traffic With F5 NGINX: A Practical Guide

Prioritizing Vulnerability Management Using Machine Learning

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS