Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

White listing URLs in Security Policy in F5

muhammad_Tanvir
Nimbostratus
Nimbostratus

‎02-Sep-2021 17:42

Hi

 

I have created a security policy whose Enforcement Mode is transparent. In the event log I can see a lot of URLs which I can click and accept. How do I whitelist a URL like https:/abcd.com/* which allow all the directories and will not block when I change Enforce mode to Blocking

 

Kind regards

Tanvir

Labels:
0 Kudos
1 REPLY 1

Daniel_Wolf
Nacreous
Nacreous

‎03-Sep-2021 00:30

Hi Tanvir,

 

depending on which template you used for your Security Policy the * (wildcard) should be there by default.

Go and see here: Security ›› Application Security : URLs : Allowed URLs : Allowed HTTP URLs

There you should see entities for HTTPS * and HTTP *.

 

And, again depending on which template you choose, the policy will or will not learn New URLs as entities.

See here: K15530590: Overview of BIG-IP ASM security policy templates

"Learn New HTTP URLs: Never" means your policy will not offer new learning suggestions for URLs.

Did you maybe change the learning setting for New HTTP URLs from Never to something else in the Learning and Blocking Settings for your policy?

 

KR

Daniel

0 Kudos
Copyright © 2023 Khoros, LLC