cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 

This product reached the end of support date on March 31, 2021.

Any UEM issues or conflicts with F5 BIG-IP Application Security Manager (ASM)?

JamesKitson
Dynatrace Leader
Dynatrace Leader

F5 load balancers are used here and they plan on enabling it's web application firewall (WAF) called ASM (Application Security Manager): https://f5.com/products/big-ip/application-security-manager-asm - not that we're expecting issues but we would like to know if anyone has run into any conflicts or issues with the uem monitor signals getting sent back to the web server agents. Thanks!

3 REPLIES 3

werner_segers1
Visitor

I'm currently running into issues with UEM & F5 ASM...

It blocks DynaTraceMonitor POSTs:


  • Attack signature detected:
    "date" execution attempt in: Y_USERNAME,UserName,,username;KEY_PASSWORD,Password,,password;#/date-de-déménagement",0x20"mtime":1493211830000,0x20"ref":"https://b

Since we're using a single page app and display a 'Service Not Available' page when receiving specific http return codes (in our case we receive a 403 forbidden for DynaTraceMonitor), and this renders the application completely unusable (many users were impacted).

We're currently looking at creating an exception rule on the BIG-IP...

Check if you are reporting the even to proper DynatraceMonitor. Check if CORS checkbox is causing issue. Check if all traffic is going over https. Check if cookie needs to be secure or not.

We just deployed ASM as well and I am seeing multiple different items being blocked. Did you end up writing the rule and did it work?