Forum Discussion

Nimbostratus

Nov 10, 2008

Modified Domain Cookie blocking

We have recently installed a pair of F56400s (v9.4.3) in front of our website with ASM in blocking mode. Despite the fact that our Website only utilises a handful of cookies (all confi...

app sec

BIG-IP Access Policy Manager (APM)

security

Dave_Burnett_20

Nimbostratus

Nov 13, 2008

Thanks for the response Aaron

Where would I get the response information from that you seek?

For information, the cookies are not from our applications - I've checked with our developers who confirm this. Therefore I'm confused as to why they are being presented to our F5s ?

We do have the Modified Domian Cookie disabled at the moment - because we are getting hundreds of them (therefore hundreds of potential customers) blocked by the F5 policy.

However, what level of risk are we running in not having this feature enabled?

An independent consultant who reviewed our F5 policy recommended that it be enabled again as soon as we managed to sort out why we were seeing so many 'foreign' cookies.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Modified Domain Cookie blocking

Recent Discussions

ports are showing open on online scanning tool

Upgrade F5 BIGIP

DNS HM Probe issue

Is XFF a must for ASM WAF DoS

Switch ssl profile based on weak cipher detection via IRULE

Related Content

domain blocking

modified domain cookies

Enriching AFM with public domain Threat Intelligence

iRule to modify a content-security-policy header

Blocking domains

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS