Forum Discussion
vikas_Patil
Nimbostratus
NimbostratusBypass WAF for X-forwarder IP in XC
We use the F5 XC and want to bypass the WAF rules if traffic comming from specific IP address in X-forwarder-for field, X-forwarder-for Field contail Multiple IP address and if any of the IP matches...
Here is the article after I played with the features of the F5 XC:
vikas_PatilNimbostratus
NimbostratusActually we want to do it on WAAP, and Irule option is not available
Sudhir_PatamsettiEmployee
VikasB , You can use "trusted client rules" to "bypass WAF" . Navigate to http load balancer --> common security controls ---> trusted client rules
- Nikoolayy1
MVP
vikas_Patil did you manage to make this work?
Maybe to match a specific ip address when there are many in the HTTP XFF header you can use regex. To match a single IP address you can try the regex (1\.1\.1\.1) where 1.1.1.1 is the IP address and soon I will publish an F5 community article about this as I played with the feature a little.
- Nikoolayy1
Here is the article after I played with the features of the F5 XC: