Forum Discussion

Nimbostratus

Nov 22, 2011

Parameter interfering with web site pop-up

I have a web application running on a box behind a BIG-IP system running both LTM and ASM. before we turned on the ASM features, we could access the pop-ups that it would create from a link in the br...

app sec

BIG-IP Access Policy Manager (APM)

security

Ido_Breger_3805

Historic F5 Account

Nov 23, 2011

Hi Aaron,

What you see is the paramater that ASM adds in order to protect against CSRF.

You can either disable that protection for the popup URL, or, upgrade to V11 where this issue is fixed (ASM will clean that paramater before it forward the request to the web server)

Cheers,

Ido

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Parameter interfering with web site pop-up

Recent Discussions

Reporting Help Needed

Switch ssl profile based on weak cipher detection via IRULE

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

full-proxy HTTP2

Related Content

Brute Force protection for single parameter like OTP

Wildcard Parameter signature attack

HTTP auth - Calling external API with parameters

Parameter Value - Regular Expression

AWAF Path Parameters with OPENAPI json file

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS