Last Modified: Sep 13, 2023
Affected Product(s):
BIG-IP ASM
Fixed In:
17.0.0, 16.1.2.2, 15.1.5.1, 14.1.4.6, 13.1.5
Opened: Oct 29, 2019 Severity: 4-Minor
Response log is not available when the request is legal but returns an illegal response status code. In ASM, logging profiles allow the logging of all blocked responses. The existing response logging allows either all requests or illegal requests only which does not contain response logging data.
Response logging does not occur.
-- Response logging is enabled -- An illegal response occurs
N/A
When a response has ASM response violations and response logging is enabled only for when there was a violation, ASM includes the response in the log. Added an internal variable: disable_illegal_response_logging -- default value 0. If the response logging is enabled in the GUI, only the response logs are captured. If the variable disable_illegal_response_logging is set to 1, then response logging is disabled(even if enabled in GUI).