For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Jack3's avatar
Jack3
Icon for Nimbostratus rankNimbostratus
Apr 19, 2025
Solved

What dose "Accept" do in BIG-IP ASM event logs

I'm trying to understand what will happen if i click on accept in event log.

Will waf simply whitelist this request ?

 

 

 

asm
bigip
waf
  • Brandon's avatar
    Brandon
    Apr 20, 2025

    If you click Accept. You are wanting the policy to allow it . When you click Accept since shown in the picture its a Attack Signature. You should be able to look at the attack signature and see it diasble.   I wonder what F5 Version of code you are running.  Normally  I see Delete, Ignore, and Accept. 

2 Replies

  • Brandon's avatar
    Brandon
    Icon for Cirrostratus rankCirrostratus
    Apr 20, 2025

    If you click Accept. You are wanting the policy to allow it . When you click Accept since shown in the picture its a Attack Signature. You should be able to look at the attack signature and see it diasble.   I wonder what F5 Version of code you are running.  Normally  I see Delete, Ignore, and Accept. 

  • Aswin_mk's avatar
    Aswin_mk
    Icon for MVP rankMVP
    Apr 21, 2025

    Hello Jack3​ 

     

    In ASM (Application Security Manager), "accept", "export", and "delete" functionalities relate to managing security policies. "Accept" is used to implement a previously ignored or learned suggestion, "export" allows you to save a policy for later use or transfer to another ASM system, and "delete" removes an existing policy/log events. 

     

    BR
    Aswin