Forum Discussion

BK1's avatar
BK1
Icon for Cirrus rankCirrus
Aug 08, 2021
Solved

WAF custom block page settings

We have configured custom block page for WAF. It is perfectly working fine. Now our customer want few security settings like csp headers, hsts to be enabled on the response page. Could you please con...
ASM Advanced WAF
security
  • SanjayP's avatar
    SanjayP
    Aug 10, 2021

    You don't need to add those headers in the code, but in the response headers field as shown below.

     

     

     

    if you are trying to add via iRule, please use HTTP_RESPONSE_RELEASE event as ASM is triggered after HTTP_RESPONSE event

SanjayP's avatar
SanjayP
Icon for Nacreous rankNacreous
Aug 10, 2021

You don't need to add those headers in the code, but in the response headers field as shown below.

 

 

 

if you are trying to add via iRule, please use HTTP_RESPONSE_RELEASE event as ASM is triggered after HTTP_RESPONSE event