UNABLE TO LEARN SOME REQUEST VIOLATION IN BIGIP ASM 12.1.0

Question

I am using BIGip ASM version 12.1.0. I have configured virtual servers &amp; blocking policies on those virtual servers . I am able to learn requests for some violations but for some violations I am not able to learn suggestions in Security--&gt;APPLICATION security--&gt;policy building--&gt;traffic learning but the same requests can be seen in security--&gt;eventlogs--&gt;applictaion--&gt;request. Since I am not able to learn suggestion for this request I am not able to accept or ignore violation.&nbsp;
Please help me if it is a bug or known issue in BigIP 12.1.0&nbsp;

samstep · Answer

Deepti, these violations are not learnable, you will need to add them manually to the policy.&nbsp;
See ASM Configuration Guide: &nbsp;
The following violations are considered unlearnable:&nbsp;
Request length exceeds defined buffer sizeCSRF authentication expiredIllegal session ID in URLLogin URL bypassedLogin URL expiredCookie ViolationsASM Cookie HijackingExpired timestampModified ASM cookieInput ViolationsIllegal number of mandatory parametersFailed to convert characterBrute Force: Maximum login attempts are exceededNull in multi-part parameter valueNegative Security ViolationsVirus detectedRFC ViolationsCookie not RFC-compliant
These are other special violations for which the system does not provide learning suggestions:&nbsp;
Access from disallowed User/Session/IPWeb scraping detected
Hope this helps,&nbsp;
Sam&nbsp;

petewhite · Answer

Can you give us an example please - there are some violations that cannot be learned such as HTTP header errors. Violations related to file types, URLs, parameters etc should have learning suggestions.

deepti_nayak_26 · Answer

I couldnot learn violations for HTTP protocol compliance(Null Request),failed to convert character.&nbsp;

deepti_nayak_26 · Answer

I couldn't learn violations for HTTP protocol compliance(Null Request),failed to convert character.&nbsp;

deepti_nayak_26 · Answer

I couldn't learn violations for HTTP protocol compliance,failed to convert character.&nbsp;

Forum Discussion

UNABLE TO LEARN SOME REQUEST VIOLATION IN BIGIP ASM 12.1.0

6 Replies

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

Failing over Virtual F5 VE to DR location using Zerto

Failing over of a Virtual F5 configuration to another location using Zerto restore process

F5 Networks F5CAB1 Exam - Need Help Regarding Prep

Username is not filled in EdgeClient in the Modern customization

The GSLB pool is providing an incorrect IP to end users

Related Content

HTTP Request Smuggling Using Chunk Extensions (CVE-2025-55315)

Separating False Positives from Legitimate Violations

Rate limiting GraphQL API query using iRule and Advanced WAF Violation

Logging DNS Requests

Using Client Subnet in DNS Requests

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS