-
CE Admin password - enforce strict password policy
Issue: When a cloud site (AWS/Azure/GCP) is deployed, there is a new feature implemented where the admin password can be set. This password does not enforce any policy. I can use a simple password like asd123. Admin password should enforce a stric...0
-
Support for More then 2 interfaces on XC VMWare based CE
https://gitlab.com/f5/volterra/support/zendesk/-/issues/9027 State of Montana’s use case would require having three or more ethernet interfaces available on customer edge sites/clusters to accommodate desperate routing domains or VRFs. Current cus...
0
-
DDOS protection dashboard
There is currently no dashboard displaying the status of the DDOS protection. It would be nice to have some metrics like standard traffic levels, usual attack types, burst absorbed, etc.0
-
Add IP prefix controls to Load Balancer routes or Add WAF policy ability of selection to service policies.
Using Service Policies we can select and exclude IPs prefixes but these controls will only apply to the WAF policy defined on the Load Balancer , for now there is no way to choose which WAF policy should or should not apply.On the other hand Route...0
-
Cost Manager Module
I think customers would benefit to have something similar to what AWS Cost Management offers where they get to see their spending broken down in months/usage as in the screenshot. They could also receive notifications once they exceed their estima...1
-
Export namespaces & details
In Silverline there was the option to export the proxies and their configuration in a csv format. Adding a similar option of exporting LB configuration from all the namespaces at a glace with details on their security posture would be useful for g...0
-
Enable the ability to take packet captures from VoltConsole
It would be great if you could have an easy way to take packet captures on specific nodes from VoltConsole, perhaps under VoltConsole -> Sites -> Connectivity -> Tools. It would also be useful if you could specify the interface(s) and opt...
0
Planned
-
Brute Force and Malicious User - skip processing except for the login page
Context After having detecting and mitigating a automation request with Bot Defense, Malicious User (MU) can prevent any further automation request from the same User Identifier. The benefit is that MU doesn't charge mitigated requests but Bot Def...0
-
allow payload logging via global log receiver
The API discovery feature is already parsing payloads to identify data types such as credit card, email, SSN. Allowing payloads to be included in the global log receiver provides enrichment of API Inventory and also for high risk APIs such as logi...1
-
LB HTTP health monitor - no receive string
XC's synthetic monitors include the capability to specify a regex pattern against response body. This is helpful in general for targeted probing, i.e. common application-side built-in health checks that report on critical backend system resources/...0