Forum Discussion
ashsap1
Nimbostratus
Jul 01, 2020AWS WAF - Web Exploits Rules by F5 efficacy
We use "AWS WAF - Web Exploits Rules by F5" rule-set available from AWS Marketplace.
These rules do trigger blocks but in rare cases only.
There are cases such as POST/GET based payload injection attempts which are not caught or blocked by the rule-set.
Secondly, the rule-set does not have any awareness of the source IP reputation or block traffic based on the same.
What is your experience with these rule-set? Is there another rule-set from F5 which is more suited for blocking OWASP Top 10 attacks.
No RepliesBe the first to reply
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects