Operational Defect Database
BugZero found this defect 2015 days ago.
Data sources
All data on this page is proprietary to BugZero® or gathered from public sources
F5 | 657640
Issue deploying new ASM policy to BIG-IP with disallowed WebSocket URLs configured in policy
Last update date:
5/17/2024
Affected products:
BIG-IQ
BIG-IQ Web App Security (ASM)
Affected releases:
5.2.0
Fixed releases:
No fixed releases provided.
Description:
Symptoms ... After deploying a new policy to a 13.0 BIG-IP device and doing another evaluation, differences involving the addition of a Plain Text Profile named "Default" might appear. ... Deploying the second evaluation will fail with an error that the Plain Text Profile cannot be deleted. ... Impact ... Difference shown after deployment and failure of second deployment. ... Conditions ... The issue happens when deploying to a 13.0 BIG-IP device and the policy has Disallowed WebSocket URLs. ... The issue happens if the BIG-IP device does not have a fix to bug 658062. ... Workaround ... In order to fully deploy the configuration if the unexpected difference appears, it is needed to remove all disallowed WebSocket URLs on the BIG-IP directly before doing another evaluation. ... Fix Information
