For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

MSZ_221163's avatar
MSZ_221163
Icon for Nimbostratus rankNimbostratus
Sep 19, 2018

The amount of data that can be sent in a request plus the URL & cookie lengths.

Where we define the following in F5? The amount of data that can be sent in a request plus the URL & cookie lengths.  
ASM Advanced WAF
BIG-IP
security
Nicolas_Destor's avatar
Nicolas_Destor
Icon for Cirrostratus rankCirrostratus
Sep 19, 2018

In the TCP profile you can define the Maximum Segment Size value (default is 1460 bytes). Menu Local Traffic->Profile->Protocols->TCP

 

For the cookie lengh, you can define it inside an ASM policy, otherwise with an iRule (to check the lenght and reject the packet if too long)