Forum Discussion

Nimbostratus

Jan 18, 2024

AWS WAF F5 rules - Does it also scans file ?

In one of API request in our application where we upload a file is getting blocked by F5 rule "ruleId": "rule_SQL_INJ_end_quote_UNION__Parameter__AllQueryArguments_Body". Can someone confirm if F5...

cloud

security

Heath_Parrott

Employee

Jan 18, 2024

Any ISV that provides WAF rules to AWS is subject to how the AWS WAF engine and HTTP work. When a file is uploaded via HTTP it is attached to the HTTP POST request as the body. This could be a multipart form, raw content or a URL link to upload. The AWS WAF engine is capable of scanning the body up to the size limts.

What was logged in the terminating rule matching details - "terminatingRuleMatchDetails": [],?

Forum Discussion

AWS WAF F5 rules - Does it also scans file ?

Recent Discussions

How to add a new DNS(gtm) to the existing network?

Failed to add new DNS machine to the existing DNS sync-group

Email Notification Sent For The Configuration Change

F5 Malicious Source IP Address Alert

F5 APM Variable Assign agent

Related Content

F5 Distributed Cloud Origin Server Subset Rules

Advanced iRules: Scan

Advanced iRules: Binary Scan

F5 Distributed Cloud Network Firewall Rule Evaluation and Packet Flow

LTM Cipher rule