Forum Discussion

MSZ's avatar
MSZ
Icon for Nimbostratus rankNimbostratus
Sep 26, 2017

[WSS ] illegal URL

Hi I am getting the following msg (Blocked) in event logs [WSS] illegal URL ANy idea abou it. Using version 13.x

 

ASM Advanced WAF
BIG-IP
security
  • Mike_275667's avatar
    Mike_275667
    Icon for Nimbostratus rankNimbostratus
    Sep 26, 2017

    The transaction must be a false positive. Did you try to learn the suggestion? Go to, Security >> Application Security >> Traffic Learning, find the URL that is blocked and try to learn the suggestion

     

    • MSZ's avatar
      MSZ
      Icon for Nimbostratus rankNimbostratus
      Sep 26, 2017

      Please review the question again. This URL is working properly with HTTPS. I am getting blocked requests with WSS

       

  • Jad_Tabbara__J1's avatar
    Jad_Tabbara__J1
    Icon for Cirrostratus rankCirrostratus
    Sep 26, 2017

    ASA MSZ,

    It seems that your application use Websocket.

    • WS (for unencrypted text)*
    • WSS (for encrypted text)

    As for HTTP/ HTTPs URLs, you will need to specify within your ASM policy "Allowed Websocket URLs"

    You can define allowed URL either using "wildcard" from :

    Security  ››  Application Security : URLs : Wildcards Order : WebSocket URLs

    Or explicitly from :

    Security  ››  Application Security : URLs : Allowed URLs : Allowed WebSocket URLs

    Hope it helps

    Waiting for your feedback