Bug ID 1311253: Set-Cookie header has no value (cookie-string) in server-side, due to asm.strip_asm_cookies

Last Modified: Oct 17, 2024

Affected Product(s):
BIG-IP ASM(all modules)

Fixed In:
16.1.5

Opened: Jun 22, 2023

Severity: 3-Major

Symptoms

Set-Cookie header has no value (cookie-string) in server-side.

Impact

Cookie header without value (cookie-string) is sent to server-side

Conditions

- asm.strip_asm_cookies is enabled. - Cookie header from client has TS cookie(s) that are the only cookie.

Workaround

Use an iRule to delete Cookie header in the server-side.

Fix Information

None

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips