search

F5Networks / terraform-provider-bigip

Terraform resources that can configure F5 BIG-IP products
https://registry.terraform.io/providers/F5Networks/bigip/latest/docs
Mozilla Public License 2.0
103 stars 119 forks source link

bigip_waf_entity_param | level "none" or "global' #998

Closed bwearp closed 2 hours ago

bwearp commented 3 months ago

Environment

Summary

when submitting a new parameter with: level = "global" ==> "Error: Invalid value for Parameter Level to set" - after terraform apply myplan level = "none" ==> "Error: expected level to be one of [global url flow]" - after terraform plan -out myplan

The default setting is the wildcard URL - in the GUI/TMSH, the default setting is Global Unfortunately I am working in a bank and so I do not have access to GitHub from my work pc....

Hope this is enough - apologies if not

pgouband commented 2 months ago

Hi,

Thanks for reporting. Added to the backlog and internal tracking ID for this request is: INFRAANO-1619.

bwearp commented 1 month ago

Hiya. Sorry to hassle. Would you be able to give a very approximate fix date that I can tell the boss? 😊

pgouband commented 1 month ago

Hi,

For the release after the one we are working on so end of October but we will try to fix it earlier if possible.

RavinderReddyF5 commented 4 weeks ago

Hi @bwearp,

I didn't see any issue. below is config I used. please let me know is this something missed from my config:


data "bigip_waf_entity_parameter" "Param1" {
  name                   = "Param1"
  type                   = "explicit"
  data_type              = "alpha-numeric"
  level                  = "global"
  check_max_value_length = true
  check_min_value_length = true
  max_value_length       = 30
  min_value_length       = 15
  perform_staging        = true
}

resource "bigip_waf_policy" "this" {
  name                 = "Test-ASM-Automation-Scenario2"
  partition            = "Common"
  template_name        = "POLICY_TEMPLATE_FUNDAMENTAL"
  application_language = "utf-8"
  enforcement_mode     = "blocking"
  server_technologies  = ["Apache Tomcat", "MySQL", "Unix/Linux"]
  parameters           = [data.bigip_waf_entity_parameter.Param1.json]
}
bwearp commented 4 weeks ago

Hi,

Thanks for looking into it.

I’m using a parameter map and json as recommended by f5 in: https://community.f5.com/kb/technicalarticles/manage-f5-big-ip-advanced-waf-policies-with-terraform-part-4---policy-lifecycle-/300866

Setting the level to global or url causes the error…

KR, Ben

On Tue, 10 Sep 2024 at 09:42, RavinderReddyF5 @.***> wrote:

Hi @bwearp https://github.com/bwearp,

I didn't see any issue. below is config I used. please let me know is this something missed from my config:

data "bigip_waf_entity_parameter" "Param1" { name = "Param1" type = "explicit" data_type = "alpha-numeric" level = "global" check_max_value_length = true check_min_value_length = true max_value_length = 30 min_value_length = 15 perform_staging = true }

resource "bigip_waf_policy" "this" { name = "Test-ASM-Automation-Scenario2" partition = "Common" template_name = "POLICY_TEMPLATE_FUNDAMENTAL" application_language = "utf-8" enforcement_mode = "blocking" server_technologies = ["Apache Tomcat", "MySQL", "Unix/Linux"] parameters = [data.bigip_waf_entity_parameter.Param1.json] }

— Reply to this email directly, view it on GitHub https://github.com/F5Networks/terraform-provider-bigip/issues/998#issuecomment-2340036490, or unsubscribe https://github.com/notifications/unsubscribe-auth/AIRHBUALVWZIOSSGUNZ4V6TZV2WG3AVCNFSM6AAAAABKNM44BSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDGNBQGAZTMNBZGA . You are receiving this because you were mentioned.Message ID: @.***>

pgouband commented 4 weeks ago

Hi @bwearp,

Can you share some examples causing the error?

RavinderReddyF5 commented 4 weeks ago

hi @bwearp,can you please try with latest version of TF BIG-IP Version: v1.22.3

bwearp commented 4 weeks ago

Hi,

I can’t I’m in a bank…

KR, Ben

On Tue, 10 Sep 2024 at 10:31, Patrick @.***> wrote:

Hi @bwearp https://github.com/bwearp,

Can you share some examples causing the error?

— Reply to this email directly, view it on GitHub https://github.com/F5Networks/terraform-provider-bigip/issues/998#issuecomment-2340151835, or unsubscribe https://github.com/notifications/unsubscribe-auth/AIRHBUB6Z6L7SBF2WLDNNGLZV24A5AVCNFSM6AAAAABKNM44BSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDGNBQGE2TCOBTGU . You are receiving this because you were mentioned.Message ID: @.***>

bwearp commented 4 weeks ago

Hi,

Ok will do thanks. 🙏

KR, Ben

On Tue, 10 Sep 2024 at 11:23, RavinderReddyF5 @.***> wrote:

hi @bwearp https://github.com/bwearp,can you please try with latest version of TF BIG-IP Version: v1.22.3 https://github.com/F5Networks/terraform-provider-bigip/releases/tag/v1.22.3

— Reply to this email directly, view it on GitHub https://github.com/F5Networks/terraform-provider-bigip/issues/998#issuecomment-2340268783, or unsubscribe https://github.com/notifications/unsubscribe-auth/AIRHBUEUIFREZYQT7H4ORK3ZV3CDTAVCNFSM6AAAAABKNM44BSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDGNBQGI3DQNZYGM . You are receiving this because you were mentioned.Message ID: @.***>

RavinderReddyF5 commented 1 week ago

Hi @bwearp did u verified issue from the above or version I specified ?

bwearp commented 1 week ago

Hi Ravindsr,

I didn’t I’m afraid. It takes a while for the bank to allow new software versions to be used, and I’ve now started a new job…

KR, Ben

On Mon, 30 Sep 2024 at 06:17, RavinderReddyF5 @.***> wrote:

Hi @bwearp https://github.com/bwearp did u verified issue from the above or version I specified ?

— Reply to this email directly, view it on GitHub https://github.com/F5Networks/terraform-provider-bigip/issues/998#issuecomment-2382132475, or unsubscribe https://github.com/notifications/unsubscribe-auth/AIRHBUFXOPHAUDOYL4TGPV3ZZDNH3AVCNFSM6AAAAABKNM44BSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDGOBSGEZTENBXGU . You are receiving this because you were mentioned.Message ID: @.***>

pgouband commented 5 hours ago

Hi @bwearp,

Has the bank been able to test the latest version? We were unable to reproduce the problem. If there is no response by next week, we will close the ticket.

bwearp commented 3 hours ago

Hi,

I’ve left that bank. Am at a different one.

Not sure which version they are using as am still waiting for access.

Please close the ticket.

Thanks for your help.

KR, Ben

On Tue, 8 Oct 2024 at 10:28, Patrick @.***> wrote:

Hi @bwearp https://github.com/bwearp,

Has the bank been able to test the latest version? We were unable to reproduce the problem. If there is no response by next week, we will close the ticket.

— Reply to this email directly, view it on GitHub https://github.com/F5Networks/terraform-provider-bigip/issues/998#issuecomment-2399335344, or unsubscribe https://github.com/notifications/unsubscribe-auth/AIRHBUBOCAUA4GSBKIIAHHLZ2OQTDAVCNFSM6AAAAABKNM44BSVHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDGOJZGMZTKMZUGQ . You are receiving this because you were mentioned.Message ID: @.***>