For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

tuganim's avatar
tuganim
Icon for Altostratus rankAltostratus
Jul 24, 2023

Protobuf support in ASM

Hello, We are using BIG-IP 16.1.3.4 with the ASM module. We are trying to configure an ASM policy to parse and validate parameters in protobuf payloads sent over HTTP (not gRPC). Is it possible? Can...
asm
BIG-IP
security
whisperer's avatar
whisperer
Icon for MVP rankMVP
Jul 25, 2023

This may be an advanced question regarding product capabilities, rather than a particular configuration. I would suggest an F5 support ticket to obtain an authoritative answer from those that developed the module 🙂 A quick google search against F5s domains does not show anything of merit. So not sure if the parser supports this... have you checked the various supported technologies?

https://techdocs.f5.com/kb/en-us/products/big-ip_asm/manuals/product/asm-implementations-13-1-0/23.html

Hope this helps? Another idea is to perform a pen test and have the results important into the F5 ASM for mitigation. Check the following for assessment tool outputs supported:

https://f5-agility-labs-waf.readthedocs.io/en/latest/class5/module2/lab5/lab5.html