Forum Discussion
smp_86112
Cirrostratus
CirrostratusMissing HTTP Class Profiles
I have ASM running on an LTM with 9.3.1-HF1. I created a new HTTP Class Profile, a corresponding Web Application, and default policy. Then I applied this new class to a Virtual Server.
Later I had a need to delete and recreate my custom HTTP Class Profile. So I removed the custom HTTP Class Profile from the VS configuration, and deleted the custom HTTP Class Profile from ASM which also removed the corresponding Web Application. I went through and re-created the custom HTTP Class Profile with the same name, and it looked like it was successful. However it did not appear in the list, and at that point I also noticed that the default "httpclass" profile does not appear in the list either.
Now when I go to recreate a new custom HTTP Class Profile (with the same name), I am informed that "the object already exists". Yet both the default "httpclass" HTTP Class Profile and my new HTTP Class Profile are available as Parent Profiles to select in the dialog box for creating a new HTTP Class Profile.
Any idea of how to get the default and my new HTTP Class Profile to show back up in my HTTP Class Profiles list?
smp_86112I thought I had it figured out, but I was wrong. Eventually I ended up restoring ASM to its default settings as described in SOL6992. From the GUI perspective, it appears to have reset everything. I only have an "httpclass" HTTP Class Profile, and no Web Applications. However when I go to create a new HTTP Class Profile, I still see the phantom profile in the dropdown list of Parent Profiles.- smp_86112I found the reference to the phantom HTTP Profile Class in my bigip.conf file. I removed and loaded, and now it appears OK.
hoolioThis is a known issue/annoying feature whereby the GUI has a filter which displays only the HTTP classes with App Security enabled by default. The ASM-disabled HTTP classes are definitely there at all times. You just have to change the filter from Enabled to Show All to view them. You can do this in the GUI on the HTTP class profiles page by clicking on the inverted triangle next to the App Security header and selecting Show All.
You can enable App Security on the default HTTP class profile to help avoid this issue. There is an existing CR requesting to have the default filter changed to Show All, but I can't find the number. If you'd like to see this changed in a future version, you could open a case with F5 Support and ask them to attach your case to the existing CR.
Aaron- smp_86112OMG, wow how did I miss that. I completely blew away my ASM config because of that GUI filter.
Thanks for pointing it out.