is changing the value of ecard_max_http_req_uri_len has any risk?

Question

hello everyone,the value of&nbsp;ecard_max_http_req_uri_len in our ASM is set to the default of 2048, and one of the applications we have got blocked for exceeding the length, so we increase it to 2096 and after some time they got blocked too so we increase it again to 2144, now they are getting blocked again, so I want to increase it more but i'm wondering if it has any security issue, I tried looking for answer but no clear answer, the closest I got was it may consume more resorces from ASM,&nbsp;so I need to know if I can increase it without having any issue in security or performance.Thanks.&nbsp;

juergen_mang · Answer

Follow this recommendation: https://my.f5.com/manage/s/article/K53257013
Or even better: Ask the developers how long the requests uri's could be and set the variable accordingly.

Forum Discussion

is changing the value of ecard_max_http_req_uri_len has any risk?

1 Reply

Recent Discussions

Disacard SSL::cert mode to ignore when default SSLClient profile is set to request or require

About custome Response Blocking Page

About IPI check ip list

Cookie Violation - Expired TimeStamp.

CGNAT with DS-lite and LSN

Related Content

Parsing F5 BIG-IP LTM DNS profile statistics and extracting values with Python

Change admin account

Change cookie domain in HTTP::respond

iRule HTML Maintenance Page insert URI Value

Audit WAF changes