-
Activate MTLS for API Protection
At the moment, API Protection doesn't support MTLS for a specific API or a specific IP that can access to these APIs.We are requiring that because on our nginx plus infrastructures it is possible.We can't migrate customers with this type of "basic...0
-
HTTPS option for Health Checks
Why is useful? To avoid more steps to get a 200 from the origin. Who would benefit? Some customers only accept HTTPS requests and will reply with a different status code than 200 if it is HTTP, therefore getting us a 503 response. How should it wo...0
-
single pane of glass management console
Hoping you release a central management console, akin to what Panorama does for Palo Alto.1
-
DDoS BGP Alert
Currently there is no way to configure an alert for the F5XC DDoS service in the event the BGP peering relationship is lost (flap) between Customer router and F5 RE2
-
allow expiration date for each record in Security Shared Objects IP Prefix Sets
The Client Blocking Rules under common security controls on the LB allow an expiration date to be associated to each IP/range record. This ensures the IPs roll off the block list after some time which is ideal. The records in the IP Prefix Sets do...0
-
Request_ID header add ability
For full visibility the ability to dynamicaly include the request_id value as a header would allow users to have full visibility through a single place. Requests dropped from F5 XC can be identified through the request_id, requests dropped within ...1
-
Add ability to "skip" IP Reputation as option in custom policy rule similar to how WAF, MUM and Bot can be skipped
why - its awkward and inefficient to have skip logic spread across multi areas (custom policies rules and trusted client rules). We have to define the identifying criteria for safe clients in two places. who - security engineers will benefit from ... -
Intregatrion with logrhythm
Intregatrion with logrhythm on premise0
-
Show new endpoints immediately in API discovery
The lag on discovery to showing endpoints outside of a configured API Spec file is very long (if it ever shows up). It would be very useful to see new endpoints immediately without waiting on the results of the machine learning/anomaly-detection w...0
-
response code 0
When a response is generated by F5 XC LB, "Error 504 - Gateway Timeout" for example, the response code in a security event is 0 ("rsp_code": "0"). Could we have the response code of the reponse generated by F5 XC LB?0