For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Torti's avatar
Torti
Icon for Cirrus rankCirrus
Jan 07, 2014

tcl error, when modifying http response

Hi guys, We need a custom response for a dedicated validation (XML violation). For this case I did expand the irule with the following lines: when ASM_REQUEST_BLOCKING { set x [...
application delivery
devops
iRules
uni's avatar
uni
Icon for Altocumulus rankAltocumulus
Jan 07, 2014

It looks to me like it is saying that the HTTP::header command is not allowed within the ASM_REQUEST_BLOCKING event. Kind of strange, given that the example on the ASM_REQUEST_BLOCKING page does just this.

 

Perhaps enclose some of the code in try/catch, and do some extra logging of the payload when it fails.

 

uni's avatar
uni
Icon for Altocumulus rankAltocumulus
Jan 07, 2014
Unrelated, but you should use 'contains' not '==' to test for the violation, as [lindex $x 0] is a comma separated list of violations