Forum Discussion

Altocumulus

Nov 23, 2016

Solved

WAF Blocking templates on upload

Hi Guys Have an issue with templates (html and css) being uploaded to a certain url detects them and blocks as Cross Site Scripting (XSS), Detection Evasion, Other Application Attacks, SQL-Inj...

BIG-IP

iRules

security

Lyonsy_271608
Nov 25, 2016
when HTTP_CLASS_SELECTED { ASM::enable if { [HTTP::uri] starts_with "/*****" } { ASM::disable } }

boneyard

MVP

Nov 24, 2016

depending on the attack signature type you might be able to disable it on a parameter.

if you can't you need to do something with different ASM policies. you can't disable based on URI for attack signatures easily shamefully.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 Architecture Track Sessions - AppWorld 2026

DevCentral News

announcement

Appworld2026

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

WAF Blocking templates on upload

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

2026 301a exam

F5OS login with admin/root failed via console

VIP is not responding on SYN after enabling other modules like ASM, APM and AFM.

UCS Encryption Question

Unblock Request WAF

Related Content

Can't upload msg file - ASM block

File Uploads and ASM

WAF - Allow uploads of only files with certain extensions and block all other file uploads

Legacy ASM Templates

External Monitor Information and Templates

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS