-
WAF exclusion rule - domain regex
A customer has deployed a HTTP LB for apps in non-prod (myapp-x.np.mydomain.com) and prod environement (myapp-x.np.mydomain.com). When a WAF False Positive occurs on an App in non-prod, they want to create ONE WAF exclusion rule that applies for n...0
-
Additional fields for security dashboard in `system` namespace
The following information are available in the security dashboard under individual namespace but are missing from the `system` namespace. WAF LB Mode DDOS Detection/Mitigation IP Reputation0
-
Integration with DigiCert and others CAs
That would be great to have integration with others authorities other than LetsEncrypt. We do have enterprise customers that don't want to use Let's encrypt certificates and at the same time, don't want to create new automations with F5 XC. You ca...1
-
Add transparent mode (Log Only) on IP Reputation Service
Could be useful to add the transparent mode on the IP Reputation service, to monitor it's behaviour and eventually analyze some False Positive request. Like the monitoring mode on the App Firewall config.1
-
In Forward Proxy Policies add the ability to restrict based on HTTP Method
In Forward Proxy Policies would like the ability to allow/deny traffic based on the HTTP method (GET, POST, PUT, etc). For example today you can allow/deny based on TLS Domains, HTTP URLs, and L4 Destinations; would also like to filter based on HT...0
-
Bot Defense default region
When using Bot Defense Reports customer has to select the region where service is deployed for their protected application. Default is US, but is not customisable for the customer. The idea is to permit customers to select their preferred default ...1
-
Origin Pool TLS Configuration "Auto-Diagnostic" Button
Issue: Troubleshooting a lot with customers and they keep running into 503 errors due to misconfigured TLS on the Origin Pool, and then its a hassle to figure out which settings are the right ones. They constantly need to go back and check the req...0
-
Customer Edge (CE) Upgrade Notification
Currently, a CE cannot be upgraded if an upgrade has not been performed within the last 6 months. CE upgrade details are visible within the tenant, within the Multi-Cloud Network Connect tile. However, no external notifications are provided. Recom...2
-
F5 XC TCP connection multiplexing like F5 OneConnect
I do not see an option to enable F5 XC TCP connection multiplexing like the F5 OneConnect profile for HTTP 1.1 connections to the backend origin pool.0 Planned
-
The CDN feature should be just a setting in the HTTP load-balancer configuration form
It currently is quite painful to have to setup two different instances to manage a load-balancer and a CDN distribution. Web assets protected behind F5XC’s load-balancers should be given the option to be cached by the load-balancer. The setting wo...
0