Bug ID 761873: The BIG-IQ Monitoring:: REPORTS :: Security :: Web Application Security page does not work as expected for BIG-IP devices 13.1.0.5 or later

Last Modified: Apr 14, 2020

Bug Tracker

Affected Product:  See more info
BIG-IQ AppIQ(all modules)

Known Affected Versions:
6.1.0, 7.0.0, 7.0.0.1

Opened: Mar 19, 2019
Severity: 3-Major

Symptoms

The Monitoring :: REPORTS :: Security :: Web Application Security page exhibits any of the following behaviors: -- Displays no data. -- Crashes when using the Google Chrome browser. -- Shows nested windows.

Impact

GUI crashes when using the Google Chrome browser. Screen displays nested windows.

Conditions

1. Access the 'Web Application Security Reporting' page by going to Monitoring :: REPORTS :: Security :: Web Application Security. 2. Select a device that is supported for reporting statistics on this page. Note: WAF statistics for BIG-IP devices running versions 13.1.0.5 and later are available in 'L7 Security' and 'Web Application Security' dashboards in BIG-IQ. Devices running versions 13.1.0.5 (14.0 for DoS reports) or later are no longer supported by this screen.

Workaround

To access monitoring reports on BIG-IQ version 7.0, or earlier, that experience this issue, use the following steps: 1. Create a backup of the /etc/webd/webd.conf file: #cp /etc/webd/webd.conf{,.org} 2. Insert two stanzas in the /etc/webd/webd.conf file at line 160 (following /ui/asm/stubData): location ^~ /ui/asm/reporting { root /usr/local/www; rewrite ^/ui/asm/reporting(/.*)?$ /ui/asm/reporting$1 break; } # handle pre-7.0 URLs # access needs a special redirect because the system loads .json files under the /ui/access/ URL location ~* /ui/access/?(accessReporting|swgReporting)?/?$ { return 301 /ui/system; } 3. Verify that the changes were applied. The diff output should look like this: # diff /etc/webd/webd.conf /etc/webd/webd.conf.org < < location ^~ /ui/asm/reporting { < root /usr/local/www; < < rewrite ^/ui/asm/reporting(/.*)?$ /ui/asm/reporting$1 break; < } < < # handle pre-7.0 URLs < # access needs a special redirect because the system loads .json files under the /ui/access/ URL < location ~* /ui/access/?(accessReporting|swgReporting)?/?$ { < return 301 /ui/system; < } 4. Restart webd to load the changes: # bigstart restart webd

Fix Information

None

Behavior Change