Can anyone please explain why the following attached HTTP-request traffic categorized as "information Leakage" in ASM traffic log? Thanks
Based on your screenshot my wildest guess would be that your persistence cookie isn't encrypted and has the default name. (and that it is leaking the internal ip address and server port)
I can tell your internal server listens on port 443 and it's ip address end's with .152
The ASM could see this as information leaking.
Thanks for for the info. i would like to know how did you calculate those un-encrypted persistence cookie to digit .152? yes you are right the ip ends with 152.
There is a website that does it for me ;-)
If you enable cookie encryption on the cookie persistence profile, does this mitigate the information leaking?