ASM Policy Configuration - Allowed URLs

Question

We have been using ASM to block our web apps for about 4 months.  Recently, we started having frequent and random f5 failovers.  We have been told that it is because we are using wildcard for HTTP and HTTPS in the URL: Allowed URLs portion of our policies.  We are not learning, alarming or blocking Illegal URL and based on documentation provided by f5, using the wildcard is acceptable and results in a "policy that easy to manage but may not be as strict."&nbsp;
Anybody experienced this or know if it is required to have an explicit list of allowed URLs and associated Content Type profiles?&nbsp;
We are on version 12.1.2&nbsp;

nathe · Answer

Jaime, wildcards on URLs are perfectly acceptable and you do not have to explicitly allow any. I don't understand the link between this configuration, which is the one I see most often btw, and the failover. &nbsp;
I would check logs around the time of failover and upload qkview to ihealth too. &nbsp;
N&nbsp;

Forum Discussion

ASM Policy Configuration - Allowed URLs

1 Reply

Recent Discussions

google autenticator broken barcode

Error while running ansible

ASM instance creation

[ASM] - what is "Browser Challange file" ?

[ASM] - HTML5 Cross-Domain Request Enforcement - CLI command

Related Content

Auditing Security Policy Updates

Federated AWS Console Access Made Easy: F5 BIG-IP Access Policy Manager Access Guided Configurations

Configuring BIG-IP AFM firewall policies and rules with Ansible

WAF Policy Editor - a Web-Based Tool to Configure a Declarative WAF Policy

Minimizing Security Complexity: Managing Distributed WAF Policies