Forum Discussion

Cirrus

Jan 26, 2017

Using ASM to Restrict File Uploads to PDF Only

I would like to restrict file uploads to only PDF's for a single upload url using ASM on v12.1. I see there have been several discussions around this but I still have been unable to get this to work...

ASM Advanced WAF

security

Dev_56330
Jul 01, 2017
Answer provided by F5 Employee.

Detecting file upload
Validating the file type to be uploaded using ASM: a.Identify the parameter name i.Parse the HTTP request using an inspection tool (e.g. HTTPWatch) ii.Search the ASM logs iii.Ask the Dev team b.Add the parameter to the configuration by: i.Manually configuring it in the Parameters section ii.Searching the Policy Building  Manual  Entity learning section c.Create the parameter i.Parameter Level: Global (though you can be specific and associate to a web object) ii.Parameter Value Type: User-Input iii.Data Type  Check Max Length: Give a number (e.g. 100) iv.Data Type  Regular expression: (?i).(gif|jpeg|jpg|bmp) v.(?i) – ignore case sensitivity
Add additional file types inside parenthesis and separate by | i.Click on Create ii.Apply the policy iii.Validate the enforcement iv.Upload a different file extension v.Reporting  Requests: verify that the following violation was detected: vi.Parameter value does not comply with regular expression

Dev_56330

Cirrus

Jul 01, 2017

Answer provided by F5 Employee.

Detecting file upload
Validating the file type to be uploaded using ASM: a.Identify the parameter name i.Parse the HTTP request using an inspection tool (e.g. HTTPWatch) ii.Search the ASM logs iii.Ask the Dev team b.Add the parameter to the configuration by: i.Manually configuring it in the Parameters section ii.Searching the Policy Building  Manual  Entity learning section c.Create the parameter i.Parameter Level: Global (though you can be specific and associate to a web object) ii.Parameter Value Type: User-Input iii.Data Type  Check Max Length: Give a number (e.g. 100) iv.Data Type  Regular expression: (?i).(gif|jpeg|jpg|bmp) v.(?i) – ignore case sensitivity
Add additional file types inside parenthesis and separate by | i.Click on Create ii.Apply the policy iii.Validate the enforcement iv.Upload a different file extension v.Reporting  Requests: verify that the following violation was detected: vi.Parameter value does not comply with regular expression

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Using ASM to Restrict File Uploads to PDF Only

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

Enhance your Application Security using Client-side signals

Mitigating OWASP API Security Top 10 risks using F5 NGINX App Protect

SSL Orchestrator Advanced Use Cases: Custom Blocking Pages

Per-app failover for Kubernetes-based services using F5 Distributed Cloud Services

Ciphers for restricting traffic to TLS1.2

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS