Forum Discussion

Altostratus

Mar 13, 2015

wierd behaviour after applying transparent ASM policy

Hi, we are running ASM on bigip-5250 with version 11.5.1 HF3. We had created the ASM security policy using the policy wizard and selecting manual mode. It was in transparent state, so NOT blocking an...

ASM Advanced WAF

security

gsharri

Altostratus

Mar 13, 2015

An ASM security policy in transparent mode will still affect traffic by inserting cookies and possibly modifying traffic payload. Transparent mode only stops ASM from blocking if there are violations.

Using rapid deployment template enables Data Guard by default to mask credit card numbers and US social security numbers so if there is any code in the page that looks like a CC data guard is most likely masking it with ***** characters.

Other features may also alter the payload of the response even in transparent mode: CSRF protection, bot detection, DDoS protection

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)