Forum Discussion

Nimbostratus

Feb 16, 2017

TCL error on an iRule used for ASM managment

We have an iRule that is used to conditionally unblock triggered attack signatures on ASM policies for specific requests. Largely, this iRule works great. For some applications, however, it present...

Cirrus

Mar 06, 2017

There is a known restriction, which F5 tracked internally as ID 429063, whereby iRule data objects like HTTP::method, HTTP::uri, etc. that are normally available in the clientside context -- and accessible in the ASM_REQUEST_DONE event handler -- are not accessible when there is a "100 Continue" response before the client sends the request body.

After the 100-continue, ASM will have released the original request headers, URI, etc. and can no longer access them by the time the remainder of the request has been received and analyzed.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)