wierd behaviour after applying transparent ASM policy

Question

Hi, we are running ASM on bigip-5250 with version 11.5.1 HF3. We had created the ASM security policy using the policy wizard and selecting manual mode. It was in transparent state, so NOT blocking anything. The next day the users reported that the VS to which the ASM policy was applied is not working correctly. The users could login to the VS, but they could not click on any of the links inside the site. After removing the ASM policy from the VS and user clearing the browser cache, it all went fine again. 
Please advise if a transparent manual policy using the rapid deployment mode could do anything linke this?&nbsp;

gsharri · Answer

An ASM security policy in transparent mode will still affect traffic by inserting cookies and possibly modifying traffic payload. Transparent mode only stops ASM from blocking if there are violations.&nbsp;
Using rapid deployment template enables Data Guard by default to mask credit card numbers and US social security numbers so if there is any code in the page that looks like a CC data guard is most likely masking it with ***** characters.&nbsp;
Other features may also alter the payload of the response even in transparent mode: CSRF protection, bot detection, DDoS protection  &nbsp;

Forum Discussion

wierd behaviour after applying transparent ASM policy

1 Reply

Recent Discussions

Chrome V 124+ on MacOS - Virtual Server Access Issue

F5Access | MacOS Sonoma

Transaction looks successful but file not downloading

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

F5 Access Guard Deprecated: ZTA APM

Related Content

Integrating SSL Orchestrator with McAfee Web Gateway-Transparent Proxy

Integrating SSL Orchestrator with Symantec ProxySG: Transparent Proxy

Transparent Load Balancing in Azure

Integrating SSL Orchestrator with CheckPoint Firewall VM-Transparent Proxy

Trouble applying GoDaddy certificate to a virtual server