101 · Question #160
A request is sent to the BIG-IP ASM System that generates a Length error violation. Which of the following length types provides a valid learning suggestion? (Choose 3)
The correct answer is A. URL D. POST data E. Query string. F5 BIG-IP ASM generates length-violation learning suggestions only for URL, POST data, and query string length types, not for Cookie or Response length.
Question
A request is sent to the BIG-IP ASM System that generates a Length error violation. Which of the following length types provides a valid learning suggestion? (Choose 3)
Options
- AURL
- BCookie
- CResponse
- DPOST data
- EQuery string
How the community answered
(32 responses)- A84% (27)
- B13% (4)
- C3% (1)
Why each option
F5 BIG-IP ASM generates length-violation learning suggestions only for URL, POST data, and query string length types, not for Cookie or Response length.
URL length violations produce a learning suggestion that recommends increasing the maximum allowed URL length in the policy, allowing legitimate long URLs to pass after review.
Cookie length is enforced by BIG-IP ASM but cookie length violations do not feed into the learning engine as adjustable length suggestions in the same framework as request-side length parameters.
Response length is a server-side attribute and is not part of the ASM learning engine's client-request length violation suggestion mechanism.
POST data length violations produce a learning suggestion to raise the maximum allowed POST data size, enabling the policy to accommodate legitimate large form submissions.
Query string length violations produce a learning suggestion to increase the allowed query string length, permitting legitimate requests with verbose query parameters after administrator approval.
Concept tested: ASM length violation learning suggestion types
Source: https://techdocs.f5.com/en-us/bigip-16-1-0/big-ip-asm-implementations/about-learning.html
Topics
Community Discussion
No community discussion yet for this question.