-
Disable specific Signature IDs from being allowed with AI/ML Model
We're seeing some signature IDs coming though we'd like to block, but AI/ML is allowing these signature IDs. Ideally we'd be able to create an exception within the console on specific signature IDs to not be evaluated by AI/ML so we can enforce th...1
-
Allowing to set the content-type header for direct responses
In the Routes options of the load-balancer, setting up a Direct Response route makes that response returned with a content-type header set to "text/plain". That makes the web browser show the HTML code of the page instead of the web page. Promptin...2
-
F5 XC disable signatures for parameters in query or POST body
In the XC WAF the parameter context is supported but it similar to BIG-IP AWAF/ASM but to be able to stop parameter signature checks based on the parameter location will be even better!0
-
Location HTTP response header rewriting
For example, nitass.ddns.net is origin FQDN. proxy-2.nitass.com is LB FQDN. The origin returns 301 redirect with http://nitass.ddns.net/newlocation but user expects http://proxy-2.nitass.com/newlocation . # curl -I http://159.60.140.120/oldlocatio...0
-
Configuration Versioning
It would add a lot of flexibility to have versions in the saved configurations to allow for faster rollback procedures when changes take place. Ideally, a user will be able to save the current configuration in a version and if a rollback procedure...0 Planned
-
DDOS protection dashboard
There is currently no dashboard displaying the status of the DDOS protection. It would be nice to have some metrics like standard traffic levels, usual attack types, burst absorbed, etc.0
-
Rewrite the hostname part of the 302 Location header response
When the "Host rewrite" feature is enabled on the HTTP Loadbalancer and the backend server responds with 302 redirects with absolute path Location header (which includes the hostname the was rewritten by the HTTP LB), we need a way to rewrite the ...
6
-
XC to automatically retrieve email address for SCIM userinstead of requiring user to manually type in email on first login
With SCIM enabled, when SCIM user logs in for the first time, they are prompted by XC Console to re-enter their email address (see attachment). The current suspected cause is that XC reads the value for email from the primary email attributed prov...2
-
Allow regex or simple pattern match on header and query parameter names
Regex matching is only configurable in service policies and routes based on header/query parameter values. Only exact, case-sensitive header names can be used. You cannot drop all requests with a pattern of headers like: "badHeader: aaa" "dfghbadH...0
-
Support HTTP/3
Add HTTP load balancer support for HTTP/3 on client connections.0