Forum Discussion

zeropixel_23561's avatar
zeropixel_23561
Icon for Nimbostratus rankNimbostratus
Dec 23, 2015

ASM configurations advise

The application is working fine with F5 LTM before configuring the application security policy in the virtual server. However, after configuring policy (automatic and transparent mode) in the virtual server, the application returns error for header missing. I have no idea why it will affect since the policy is running in transparent mode and not in blocking mode. any suggestions?

 

10 Replies

  • Without seeing the client request, the request from the F5, and the response from the server, I can only suggest you add the missing header to the allowed headers, and see if that clears it up.

     

  • It would be helpful to see the request as it is processed by ASM. Go to the policy settings for your virtual server and enable Log Profile. Then select Log All Requests. After running some traffic, you can go to the Event Log and determine if the header is there or not...

     

  • In Security Event Logs, I can only see the requests processed by ASM. I cannot see the requests without ASM. correct?

     

  • F5 removed the server header (Server: ABC). I added it in HTTP Headers as the Custom Header and Mandatory, but still not working.

     

  • Try creating a custom HTTP profile (use http as the parent profile) and add Server:ABC to the Response Headers Allowed field. BIG-IP is stripping the server header before ASM processes the request.

     

  • I just tried, The character ':' is not allowed for Server:ABC. I added Server to the Response Headers Allowed, but still cannot see the Server header in the response.

     

    I did try added the iRule from the article https://support.f5.com/kb/en-us/solutions/public/10000/000/sol10089.html, but it added Xerver: ABC. I changed to Server instead but failed working.

     

    when HTTP_RESPONSE { if { [HTTP::header exists "Server"] } { HTTP::header insert Xerver [HTTP::header value "Server"] } }

     

  • I did that, it just cannot see, I have confirmed added in virtual server.

     

    when HTTP_RESPONSE { HTTP::header insert Server "ABC" }