[WSS ] illegal URL

Question

Hi
I am getting the following msg (Blocked) in event logs
[WSS] illegal URL
ANy idea abou it.
Using version 13.x&nbsp;

mike_275667 · Answer

The transaction must be a false positive. Did you try to learn the suggestion? Go to, Security >> Application Security >> Traffic Learning, find the URL that is blocked and try to learn the suggestion

msz · Answer

Please review the question again.
This URL is working properly with HTTPS.
I am getting blocked requests with WSS&nbsp;

jad_tabbara__j1 · Answer

ASA MSZ, 
It seems that your application use Websocket. 
WS (for unencrypted text)*   
WSS (for encrypted text)
As for HTTP/ HTTPs URLs, you will need to specify within your ASM policy "Allowed Websocket URLs"
You can define allowed URL either using "wildcard" from :
Security  ››  Application Security : URLs : Wildcards Order : WebSocket URLs
Or explicitly from :
Security  ››  Application Security : URLs : Allowed URLs : Allowed WebSocket URLs 
Hope it helps
Waiting for your feedback

Forum Discussion

[WSS ] illegal URL

3 Replies

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

CVE mitigation on F5 XC vs classic F5 WAF

Could not communicate with the system. Try to reload page.

F5 XC 503 upstream_reset_before_response_started{protocol_error}

UCS Encryption Question

BIG-IP VE: 40G Throughput from 4x10G physical NICs

Related Content

WSS LTM not passing data correctly

Doing mTLS Authentication per URL

URL Shortener

Unable to define WSS client certificate in F5-ASM

BIG-IP Solutions: Simple URL Redirects

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS