For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Riya's avatar
Riya
Icon for Nimbostratus rankNimbostratus
May 13, 2020

to disable signature ID 200000134 on 12.X for Dynamic generated url

Hi there,

 

i have ASM running on 12.X and blocking URL with violation rate 1 as cross site scripting signature with 200000134 (link tag) parameter. This is randomly generated url for cloud service and i do not see any option to just disable this signature. if i accept this request then this will get learned however the new access will be with new url.

 

i am wondering what is the best way to allow this dynamic url which will not get this signature checked in 12.x . as i know on 13 , which can simply add url with signature id bypassed for this.

12.x signature disable
ASM Advanced WAF
security

1 Reply

  • Ivan_Chernenkii's avatar
    Ivan_Chernenkii
    Icon for Employee rankEmployee
    May 14, 2020

    You can disable this signature globally on "Security ›› Application Security : Attack Signatures" page or create appropriate wildcard/explicit parameter on URL or globally and disable attack signature on it.