Disable Attack Signatures and RFC Compliance on Specific URL

Question

I would like to bypass a explicit URL from Attack Signatures and RFC Compliance checking.
For Example:
FQDN: 
URI: /testing/free&nbsp;
I created the explicit URL as /testing/free and in Advanced setting (Header-Based Content Profiles) 
default profile with any any and Request Body Handling: Do Nothing&nbsp;
It is not bypassing. &nbsp;

erik_novak · Answer

Which version of BIG-IP? You should be able to de-select the checkbox for "Check attack signatures on this URL." In the GUI, that tab should be near the Header-Based Content Profiles tab. There is no similar method to bypass RFC compliance checks--but you can leave the URL in staging so that no blocking will occur.

erik_novak · Answer

That's a separate violation based on the attributes of the file type. Can you accept the suggestion to add the file type "no_ext" and/or increase the query string length? &nbsp;

Forum Discussion

Disable Attack Signatures and RFC Compliance on Specific URL

2 Replies

Recent Discussions

F5 Rseries HA

Error when running bigip_command Playbook against LTM : Syntax Error: unexpected argument /bin/sh\n

Can iRule be used to perform exception of IPI category based on Geolocation

Can iRule mask the payload content on event logs of security

minimum tmos software version for connect CIS (openshift)

Related Content

F5 BIG-IP Advanced WAF: OWASP Top 10 Application Security Risks 2021 Compliance Dashboard

Decoding PCI-DSS v4.0: F5's Ridiculously Easy Guide to Technical Compliance

Making WAF Simple: Introducing the OWASP Compliance Dashboard

Migrating F5 BIG-IP APM From Legacy NAC Service to Compliance Retrieval Service

ASM irule to disable attack signature authorization header with specific value