Muhannad_64809
Apr 17, 2017Nimbostratus
Solved
ASM disable violations alarm just for specific requests
Dear Team,
During creation and fine-tuning of an ASM-policy (based on manually), i have a URL response that keep triggering an RFC compliance check. it is an auto sync process running between se...
- Apr 17, 2017
RFC compliance is violation. Nearly every violation has learn/alarm/block settings for the policy. Their is no granularity beyond that. While you can unblock via an iRule their is no command available to disable the alarm only. Your only option is to have a separate policy that has alarm turned off for the violation. Copy your existing security policy. Modify it so the alarm flag is disabled for the RFC violation. Now go to local traffic policy for your virtual server and add a new rule above the existing asm policy rule. When the URI matches have it select the new policy. Make sure policy matching strategy is set to first match.