Forum Discussion

Altocumulus

Jul 10, 2024

Unable to "accept" a HTTP protocol compliance failed violation that is of "HTTP Parser Attack type

While- I try to "accept" the HTTP protocol compliance violation for HTTP Parser attack type, I find the "accept" button greyed out and instead I getting the message "unlearnable request". How do I un...

application delivery

application security policy

MVP

Jul 22, 2024

Hello Amritkp,

If the request is in unlearnable request status, it's because the AWAF considers that the violation cannot be accepted and that nothing can be changed or adapted for the WAF to consider this request as legitimate.

The process is explained here : K45232137
Generally changes must be made on the application side to correct these compliance problems (Bad HTTP version, Unparsable request content
Null in request).

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Unable to "accept" a HTTP protocol compliance failed violation that is of "HTTP Parser Attack type

Recent Discussions

self-directed requests fail because of no certificate

Decode ObjectSID from Base64-encode string

iRule - Url rewrite and header replace and pool selection not working

ip x-forwarding

F5 ASM API-Protection Policy

Related Content

Decoding PCI-DSS v4.0: F5's Ridiculously Easy Guide to Technical Compliance

Making WAF Simple: Introducing the OWASP Compliance Dashboard

F5 BIG-IP Advanced WAF: OWASP Top 10 Application Security Risks 2021 Compliance Dashboard

Migrating F5 BIG-IP APM From Legacy NAC Service to Compliance Retrieval Service

Enforce RFC Compliance option in http profile

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS