Forum Discussion

Nimbostratus

Jun 29, 2020

BotDefense XFF when using CDN

I am having trouble with Bot-Defense detecting the client_ip (XFF) when using cloudflare. The ASM Profile is working fine when i add custom header and enable X-Forwarded-For although the BotDef...

Altocumulus

Sep 19, 2022

I am having the same issue. Did you manage to fix it? In my case I have CloudFlare CDN in front of the f5 AWAF.

What is the best implementation in this setup?

1. CF is considered as upstream proxy and set HTTP profile with trust XFF

2. Use irule to change cloudflare headers into XFF; X-real-ip. Botdefense seems to match cloudflare as a malicious bot.

I will appreciate any advise and assisstance.

Thanks.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

BotDefense XFF when using CDN

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

How can I get started with iCall

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Related Content

F5 Botdefense behind Cloudflare

Force BotDefense Captcha on Specified URL

decrypted tcpdump capture without using an iRule and without using tshark

Using n8n To Orchestrate Multiple Agents

Using AWS CloudHSM with F5 BIG-IP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS