For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

tacobell_14395's avatar
tacobell_14395
Icon for Nimbostratus rankNimbostratus
Feb 15, 2012

Query Block??

Hello all- anyway to run a query on the f5 ASM to determine what ( if any) rule would be violated. My developers are asking me if the following would cause the f5 ASM to get blocked or get an error o...
app sec
BIG-IP Access Policy Manager (APM)
security
Mike_Maher's avatar
Mike_Maher
Icon for Nimbostratus rankNimbostratus
Feb 15, 2012
So if all you are concerned about is the % I would suggest checking the Meta-Characters allowed in your URLs as if this character is not allowed it will be blocked. By default all Meta-Characters are blocked as a part of the URL, Parameter Names and Parameter Values so you would have to go into each area to allow the characters you want.

 

 

As far as running a query on the ASM itself I am not sure, but you could just send the requested through the ASM with a browser and see if you get a block page, if you get a response from the web server of any kind it made it through the ASM.

 

 

Mike