For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Shawn_Conway's avatar
Shawn_Conway
Icon for Cirrus rankCirrus
Feb 01, 2019

"sys_APM_MS_Office_OFBA_Support" irule and outlook

This is an intermittent problem. We have a custom form login page that works fine when using any browser and all the images are displayed. We also use the "sys_APM_MS_Office_OFBA_Support" irule that ...
BIG-IP Access Policy Manager (APM)
devops
Shawn_Conway's avatar
Shawn_Conway
Icon for Cirrus rankCirrus
Apr 23, 2019

Worked with F5 support and we finally got it resolved. I wonder if they will update the "irule" in another patch. Anyway here is the fix:

The Escalations Engineer working you case was able to reproduce a lab that generated similar behavior. They were able to resolve the undesired redirect to requests for images by placing the following if statement in when HTTP_REQUEST:

if { [HTTP::path] contains "/public/images" } { return }

like this:

when HTTP_REQUEST {

client detection, for ofba client 
    set ms_sp_client_type "none"
    set http_path [string tolower [HTTP::path]]
    set http_user_agent [string tolower [HTTP::header "User-Agent"]]
    set session_id [HTTP::cookie value "MRHSession"]
    set f_allow_session 0
    set ms_ofba_auth_cookie ""
    if { [HTTP::path] contains "/public/images" } {
        return
    }