Wildcard URL with "dot" allowed confused with a file type

Question

Hello  evryone&nbsp;I configuered a wildcard URL (/x/y/*) in my ASM policy with the "." as an allowed meta character, but all the requests /x/y/1245.452 for example are blocked by violation illegal file type, does anyone know how to fix this issue ?&nbsp;Thanks in advance

andrew-f5 · Answer

There's really only two solutions:(1)  Accept the filetype and do nothing(2) create a wildcard file type which will accept all non-explicit filetypes including no_ext.&nbsp;    no_ext filetypes are those urls with no periods that works in conjunction with wildcards&nbsp;    Note that the burden of enforcement will shift to url matching.     &nbsp;    violation will not be a bad filetype, but rather an unknown url&nbsp;There is a feature request to prevent this behavior but it hasn't been added to any F5 software yet ID400017.&nbsp;

Forum Discussion

Wildcard URL with "dot" allowed confused with a file type

1 Reply

Security Best Practices for F5 Products

F5 AppWorld 2026 Registration - early bird pricing.

Kostas Injeyan - October 2025 Featured Member

Recent Discussions

External Data Group Import Failing.

F5 breaking Exchange authentication

Can F5 restrict the file types transferred via FTP?

Dump all host running services during APM logon

NGINX event logs send to F5 Data Collection Device and analysis from BIG-IQ it possible or not?

Related Content

Cache Confusion

AS3 TLS_Client VS TLS_Server Schema confusion

Wildcard Parameter signature attack

Wildcard Certificate

iRule http host with wildcard domain

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS