XML parsing by XML firewall

Question

Good day.I have a financial application behind my F5 (i2800) and I need to search specific fields in XML body of requests/responses to/from this application and log theese pairs (one value from request, another - from corresponding response) to the remote HSL. Such a simple anti-fraud system.I know this can be done via iRule, but can I use XML firewall in ASM to realize it?I don't want to use an iRule because it's not scalable and number of these pairs of XML fields I need to parse and log will grow quite rapidly.Thank you.

aubreykingf5 · Accepted Answer

You can DEFINITELY use ASM / AWAF to inspect XML. ASM has an option to upload a WSDL to build policy from when you're doing explicit XML firewalling. The only thing that a true-to-form XML Firewall does that ASM does not is XML transformation. This may have changed in more recent AWAF versions, unbeknownst to me.

vladimir_shishk · Answer

Thank you for your answer, Aubrey,Bu how can I send these parsed values to an external HSL server?Should I use an iRule for this?

Forum Discussion

XML parsing by XML firewall

2 Replies

Recent Discussions

Client certificate Authentication - open multiple tabs

google autenticator broken barcode

Chrome V 124+ on MacOS - Virtual Server Access Issue

vulnerabilities (CVE-2020-36363), CVE-2016-0736,CVE-2019-6593-FOR VERSION BIGIP LTM-16.1.4

Port Group on F5OS network setting

Related Content

F5 AFM/Edge Firewall and the difference between Edge Firewalls and Next-generation Firewalls (NGFW)

Integrating SSL Orchestrator with CheckPoint Firewall VM-Explicit Proxy

Parsing F5 BIG-IP LTM DNS profile statistics and extracting values with Python

Integrating SSL Orchestrator with CheckPoint Firewall VM-Bridge Mode (L2)

BIG-IP Advanced Firewall Manager (AFM) DNS NXDOMAIN Query Attack Type Walkthrough - part two