Forum Discussion

Nimbostratus

Dec 25, 2022

Solved

Bypass WAF for X-forwarder IP in XC

We use the F5 XC and want to bypass the WAF rules if traffic comming from specific IP address in X-forwarder-for field, X-forwarder-for Field contail Multiple IP address and if any of the IP matches...

Nikoolayy1
Jan 20, 2023
Here is the article after I played with the features of the F5 XC:

https://community.f5.com/t5/community-articles/f5-xc-distributed-cloud-http-header-manipulations-and-matching/ta-p/308185

Samir

MVP

Dec 26, 2022

if you have list of known X-forwarder-for Source IP then create iRule and bypass WAF Policy. This can be possible.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Bypass WAF for X-forwarder IP in XC

Recent Discussions

Question about healthchecks

High Availability and Load Balancing for Single-Node CE with multiple ISP uplinks

CORS with API calls

HTTP portal with the NTLM auth flow is broken on XC.

Custom Attack Signatures

Related Content

X-FORWARDED header in WAF

Use x-forwarded-for to bypass authentication?

Extracting X-Forwarded-For in Node.js

The WAF Dilemma

X Forwarded For Single Header Insert

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS