-
Request Log Forwarding Granularity
We would like an option to limit the type of request logs we are forwarding, as we are seeing a large increase in ingestion after migrating to Distributed Cloud. We would like to be able to omit certain filetypes or keywords found in request paths...1
-
A system that can quickly detect GLR problems
I would like to see a system that can quickly detect problems, such as detecting malfunctions in the GLR. Also, if a problem with the GLR is discovered, I would like to see a system put in place that allows users and F5 to quickly determine the c...0
-
Check F5 reputation for a given IP
Feature request: check an IP reputation and Geo info through API (must have) and UI (nice to have) Issue: Customers are configuring huge Service Policies (10K+ entries) for IPs that are covered by F5 IP reputation lists (webroot, threat intelligen...0
-
Entra Auth Token for API Authentication
Currently API request supports only 2 type of authentication Local API token and API Certificate https://docs.cloud.f5.com/docs-v2/platform/how-to/volt-automation/apis Please provide support for Entra Auth Token for API Authentication when integra...1
-
Banner for ongoing incidents
Besides posting incidents on f5cloudstatus.com customers would benefit from having Banners on the console when there is an ongoing incident or outage.0
-
F5XC - JS and Captcha challenge customisation page
F5 Distributed Cloud WAAP to support customization of the following items: - JavaScript challenge interstitial page - Captcha challenge. Customization currently supported is pretty limited, and not enough for the customer needs. New customization...
1
-
F5 XC disable signatures for parameters in query or POST body
In the XC WAF the parameter context is supported but it similar to BIG-IP AWAF/ASM but to be able to stop parameter signature checks based on the parameter location will be even better!0
-
F5XC - WAF blocking page for JSON payload - AJAX response
F5XC WAF blocking page does not support JSON content type. We need to support it similar to AWAF AJAX blocking page.
1
-
HTTP Load Balancer: HSTS response header is missing includeSubdomains
Best practices are to include the includeSubdomains directive in HSTS header. When HSTS is enabled on an HTTP load balancers, includeSubDomains is missing from Strict-Transport-Security response header. Reference links: https://datatracker.ietf.or...0
-
Export option at the HTTP Load balancers list level
Currently, there is no export option available to retrieve the details of all load balancers for specific namespaces. If a customer requires information such as FQDN name, CNAME/IP, backend IP address, status (enabled/disabled), and creation date,...1