Forum Discussion

amolari's avatar
amolari
Icon for Cirrostratus rankCirrostratus
Jan 15, 2015

v11.6 ASM - what is now the web application?

The Class object disappeared and LTM policies came in 11.4, and v11.5 introduced new ASM iRule commands. It seems to me that the "Web application" object doesn't exists anymore. On a 11.6, I would need to provide a different response page (external) per "web app". But each "web app" uses the same ASM policy (through the GUI we can customize ASM blocking response pages, but per ASM Policy).

 

I see the object ASM::violation but it doesn't provide the context (LTM policy.. or "web app" as the older ASM::violation_data have done).

 

How could I get the context (LTM policy) and be able to build an iRule which redirects the user to an external response page differently based on the LTM policy?

 

application delivery
ASM Advanced WAF
deployment
devops
iRules
security

2 Replies

  • Arnaud_Lemaire's avatar
    Arnaud_Lemaire
    Icon for Employee rankEmployee
    Jan 19, 2015

    Hello you can create an irule accessing connectinos informations and policy matched. Based on that selecting the correct redirect.

    when ASM_REQUEST_VIOLATION {
 log local0. "ASM violation triggered on host [HTTP::host] from [IP::client_addr] running on virtual [IP::local_addr] : [virtual] with policy [POLICY::names active]"

  HTTP::respond 302 Location "http://www.yahoo.fr" 
}