-
Customize the block page of service policy
The feature is missing because when a client will be block by the Service Policy he will know that the service's traffic is through F5 and which PoP is answering right now for the request. It's unsecure for some customers.2 Already exists
-
Being able to block or allow IPv6 addresses in service policy
Good morning, Talking to support, we have been told that it is not possible to add IPv6 addresses in the IP prefix list. We believe that it is important to have this option, either to exclude malicious IPs, or, for example, to avoid blocking when ...0 Planned
-
Add an header value criteria in WAF Exclusion Rules
Sometimes is useful to exclude WAF processing for some headers value (e.g. based on Content-Type value) to avoid false positives. Today the exclusions rule filter doesn't include headers or headers value. This is now achiavable using routes, but i...6 Will not implement
-
TLS Load-balancer certificate issuance via CSR
A Silverline "feature" (Certificate keeper) that would be nice to have in F5XC would be an additional way to install a certificate on a load-balancer with F5XC providing a CSR. Steps: customer choose this option in the load-balancer form they’re p...2 Planned
-
Filter to get detail about Traffic passes via WAF Exclusion
Hi Team , Post WAF implementation we have faced issues with our application so configured WAF exclusions on the basis of path and signature but we would like to know amount of traffic hitting those exclusion so that we can mitigate and shut open g...1
-
Tenant Owner Password changes should generate audit events
When changing the password of the Tenant Owner account, there is no audit event generated for this (only an email is sent). Documented via case 468316 Please enhance the platform to generate an AUDIT event for ALL user account change activity.0
-
DDOS protection dashboard
There is currently no dashboard displaying the status of the DDOS protection. It would be nice to have some metrics like standard traffic levels, usual attack types, burst absorbed, etc.0
-
Support a new action for malicious user mitigation methods
We currently support CAPTCHA, Block and JS challenge. If we can support 'Header Inserion' as a new action for the malicious user detection feature, customers can consume that the suspicion score in other security devices.
3
-
Being able to enable again an autosupressed signature
Sometimes, the autotune feature in WAF policies disable some sigtnatures that should not be supressed. When this happen, there is no way to enable them back.0
-
A system that can quickly detect GLR problems
I would like to see a system that can quickly detect problems, such as detecting malfunctions in the GLR. Also, if a problem with the GLR is discovered, I would like to see a system put in place that allows users and F5 to quickly determine the c...0