Whitelist IP address for specific ASM signature

Question

I am looking for a way to whitelist a specific source IP address for a specific attack signature. Note that I am not looking to whitelist the signature all together or create a new security policy for hte IP address. Is there a way that I can accomplish this?&nbsp;
The specific signature is 200021093.&nbsp;

hannes_rapp · Answer

Considering the current exceptions capability in ASM, you're looking for a "workaround 'ish" solution. There's no built-in feature set for this level of granularity. Your equally good long-term scalable solutions are&nbsp;
a secondary "Relaxed Policy" matched for a specific Source IP address in LTM,or an "Unblock iRule". In case of more exceptions - preferably built on top of a LTM data-group.
How likely you consider a scenario of having similar exceptions for other Source IP addresses? If you're rather positive, you're definitely better off with the "Unblock iRule" solution. If you need a reference, look around the codeshare. If you're still stuck, feel free to ask a fellow comrade write the whole thing for you.&nbsp;
Regards,&nbsp;

Forum Discussion

Whitelist IP address for specific ASM signature

1 Reply

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

UCS Encryption Question

Unblock Request WAF

VIP is not responding on SYN after enabling other modules like ASM, APM and AFM.

VIP in https that redirect to another vip in https

BIG-IP VE: 40G Throughput from 4x10G physical NICs

Related Content

November Security Research Update: Newly Released Attack Signatures

NGINX App Protect v5 Signature Notifications

iRule for IP Whitelist on specific URL

Custom Attack Signatures

APM-Specific Features for Securing Your Website

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS