Using ASM to Restrict File Uploads to PDF Only

I would like to restrict file uploads to only PDF's for a single upload url using ASM on v12.1. I see there have been several discussions around this but I still have been unable to get this to work...

ASM Advanced WAF

security

Dev_56330
Jul 01, 2017
Answer provided by F5 Employee.

Detecting file upload
Validating the file type to be uploaded using ASM: a.Identify the parameter name i.Parse the HTTP request using an inspection tool (e.g. HTTPWatch) ii.Search the ASM logs iii.Ask the Dev team b.Add the parameter to the configuration by: i.Manually configuring it in the Parameters section ii.Searching the Policy Building  Manual  Entity learning section c.Create the parameter i.Parameter Level: Global (though you can be specific and associate to a web object) ii.Parameter Value Type: User-Input iii.Data Type  Check Max Length: Give a number (e.g. 100) iv.Data Type  Regular expression: (?i).(gif|jpeg|jpg|bmp) v.(?i) – ignore case sensitivity
Add additional file types inside parenthesis and separate by | i.Click on Create ii.Apply the policy iii.Validate the enforcement iv.Upload a different file extension v.Reporting  Requests: verify that the following violation was detected: vi.Parameter value does not comply with regular expression

Forum Discussion

Using ASM to Restrict File Uploads to PDF Only

Recent Discussions

Disk space full - what files, folders are safe to delete?

ASM instance creation

BIG-IP DNS: Check Status Of Multiple Monitors Against Pool Member

Open Redirection Mitigation

F5Access | MacOS Sonoma

Related Content

SSL Orchestrator Advanced Use Cases: Enabling GCloud Organization Restrictions

Handle False Positive for files upload

Upload iFiles to Bigip from Samba share

Restricting Access to Virtual from client IP address in X-Forwarder-For HTTP header

Building a lab using Proxmox