Forum Discussion

Nimbostratus

Sep 11, 2019

When CORS IS SET, Sometimes the request gives error when request originates from one domain and requests resource in another domain

This is wrt cors policy, Sometimes the request gives error when request originates from one domain and requests resource in another domain, the allow origin header is seen send for few of the request...

Employee

Sep 18, 2019

Here is setup:

https://techdocs.f5networks.net/kb/en-us/products/big-ip_asm/manuals/product/big-ip-asm-implementations-14-1-0/18.html

if your CORS headers are in the request and not in the response from the ASM device, checkout

K34183431: BIG-IP ASM security policy removes CORS headers when Cross-Domain Request Enforcement is 'disabled'

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

When CORS IS SET, Sometimes the request gives error when request originates from one domain and requests resource in another domain

F5 Academy at AppWorld 2026

Kostas Injeyan - October 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Terraform AS3 code for GTM Only.

Behavior of masterkey on rSeries

Azure F5 deployed using marketplace is unable to ping backend server

f5 client certificate forwarding

SSL Orchestrator and Layer 2 Service Integration

Related Content

F5 Distributed Cloud Origin Server Subset Rules

Request POST Header Rewrite of Origin and Referer

F5 Distributed Cloud - Mitigation for Cross Tenant Origin Exposure (CTOE)

Logging DNS Requests

Knowing the originating request

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS