-
Forcefully Enable MFA to all user via another admin user
No description provided0
-
Allow a signature category (low, medium) to be stopped for a Parameter, Cookie or Header context
You can use "0" to stop all the signatures for a parameter, cookie or header or use attack types to stop only SQL injections for example for a particular parameter, cookie or header but why not stop only low level signatures for the parameter, coo...0
-
Implement Malicius User Detection Sharing between Regional Edges
At the moment if a malicious user detection blocks a client not on layer 3 ip address but using user identification policies on something else like TLS fingerprint + header or Cookie this data is not shared between the RE so if an attacker goes to... -
Violation buffer is on showing on XC WAF. Difficult for us to Analyse if request is false positive or true.
I would like to raise a concern regarding the violation details displayed on the console. The information provided is not sufficiently detailed to identify the exact violation trigger or the violation buffer.1
-
A system that can quickly detect GLR problems
I would like to see a system that can quickly detect problems, such as detecting malfunctions in the GLR. Also, if a problem with the GLR is discovered, I would like to see a system put in place that allows users and F5 to quickly determine the c...0
-
Dynamic Blacklist IP
I would like to request a new feature for the XC environment: the ability for the system to automatically perform polling on a specified web resource (e.g., a TXT or CSV file hosted online) at regular intervals. The content of this file would cont...0
-
Finer-grained RBAC for WAAP: Service-Policy-only permissions per namespace
We request the ability to grant CRUD and/or read-only permissions specifically for Service Policy objects within a given namespace (default, in our case) without implicitly granting access to other WAAP objects. Today, custom roles are add-on serv...0
-
Customize the block page of service policy
The feature is missing because when a client will be block by the Service Policy he will know that the service's traffic is through F5 and which PoP is answering right now for the request. It's unsecure for some customers.2 Already exists
-
F5 XC App Firewall WAF custom signatures support
The XC security policy is an alternative workaround but service policies are not very good for POST request body match even if the option is there as they do not extract the body Form-Data or x-www-form-urlencoded parameters like with F5 AWAF/ASM ... -
Graph View for the connection between F5 XC and the Origin Server
We experience the network latency between F5 POP to Origin Server To assist with future troubleshooting and improve visibility, we would like to request your support in enabling a Graph View for the connection between F5 XC and the Origin Server. ...0