Ignore certain cookies for ASM

Question

Hi All,&nbsp;
I am having a problem on our LTM/ASM (ver 11.5.1) box. We use cookie persistence configured on the virtual server. Lately we had to encrypt the persistence cookie for added security. The result is, sometimes the encryption causes the value of the cookie to be some weird characters. And our environment requires that all headers have to meet certain character standard.&nbsp;
My question, is there a way to ignore the persistence cookie (or cookie characters to be specific) on ASM? I know we can ignore the Attack Signatures for the cookie, but we need certain characters  to be blocked on Headers in general, but ignored in this particular cookie.&nbsp;
Appreciate any advice,&nbsp;
Thanks,&nbsp;
Kenny&nbsp;

tikka_nagi_1315 · Answer

You can accomplish the using Header-Based Content Profiles
https://support.f5.com/kb/en-us/products/big-ip_asm/manuals/product/asm-implementations-11-5-0/31.html&nbsp;
Under the "Header-Based Content Profiles", there are 3 options&nbsp;
Request Header Name ---&gt; Set a Cookie header.
Request Header Value ---&gt; Set a Cookie value.
Request Body Handling ---&gt; Set as "Do nothing"&nbsp;
This will have to be configured per-url.&nbsp;

kenny_aldrin · Answer

Thanks Tikka!&nbsp;
I've got the same answer from F5 support. Case closed&nbsp;

Forum Discussion

Ignore certain cookies for ASM

2 Replies

Recent Discussions

Client certificate Authentication - open multiple tabs

google autenticator broken barcode

Chrome V 124+ on MacOS - Virtual Server Access Issue

vulnerabilities (CVE-2020-36363), CVE-2016-0736,CVE-2019-6593-FOR VERSION BIGIP LTM-16.1.4

Port Group on F5OS network setting

Related Content

Decoding the IPv4 address from the persistence cookie

Cookie-based DDoS protection

Cookie Tampering Protection using F5 Distributed Cloud Platform

2. SYN Cookie: Operation

1. SYN Cookie: Intro