-
F5XC Blocking Response Pages Redirect URL
I am looking for a solution how we can redirect url during the WAF policy blocking. I was looking in a F5XC docs and wasn't found it. In standard F5 there was a posibility to setup redirect URL /err?support-id=<%TS.request.ID()%> e.g. docume...0
-
Filter to get detail about Traffic passes via WAF Exclusion
Hi Team , Post WAF implementation we have faced issues with our application so configured WAF exclusions on the basis of path and signature but we would like to know amount of traffic hitting those exclusion so that we can mitigate and shut open g...1
-
Display SSO configuration on XC Console
Upon configuration and integration of SSO with F5XC Console, console no longer display SSO configuration setting. This make it hard to troubleshoot and investigate information input after the SSO configuration.
3
-
allow request & response header manipulation in common security policy same as is allowed in Route
why - for debugging and analytics. we want the ability to "tag" requests that match a specific payload. who - security, development and operations teams would use this for troubleshooting and analytics. once a header is added, it will be in the lo...0
-
Export LB configurations in a CSV format
Export LB configuration data in .csv directly from Distribiuted Cloud for all namespaces.2 Planned
-
Create custom API groups
To be able to create more specific roles. For example one requirement that we have is for devops users to be able to create WAF exclusion rules. Desire is not to have access to change anything else on the LB.0
-
enable mTLS passthrough or mTLS client certification pinning
I have a customer that is using mTLS with a public CA client cert, this is pinned inside the app and the backed only allows the client cert by verifying the cert. in XC the customer would like to perform the mTLS validation not on the CA but on th...0
-
LetsEncrypt module to use highest priority domain as CN
Currently, when a certificate is issued, the LetsEncrypt module sets the CN of the certificate seemingly randomly from the domain list and all domains as SAN entries. It would be great if the CN could ALWAYS be the domain configured as priority 1 ...2
-
JSON-formatted IP Address list of the F5 ADN
F5 needs to establish a public API endpoint capable of returning JSON-formatted responses for the IP ranges, rather than the current provision of a text file containing the F5 ADN IP list. This allows customers to programmatically retrieve the IP ...3
-
Highlight malicious TLS fingerprints in the Top 5 list by reputation
In the Security Dashboard, the Top Attack Sources widget should visually highlight any fingerprints that are reported as malicious in public threat intelligence databases. This would allow security analysts to quickly identify and prioritize poten...0