Forum Discussion

Nimbostratus

Jun 28, 2020

BotDefense XFF when using CDN

I am having trouble with Bot-Defense detecting the client_ip (XFF) when using cloudflare. The ASM Profile is working fine when i add custom header and enable X-Forwarded-For although the BotDef...

Altocumulus

Sep 19, 2022

I am having the same issue. Did you manage to fix it? In my case I have CloudFlare CDN in front of the f5 AWAF.

What is the best implementation in this setup?

1. CF is considered as upstream proxy and set HTTP profile with trust XFF

2. Use irule to change cloudflare headers into XFF; X-real-ip. Botdefense seems to match cloudflare as a malicious bot.

I will appreciate any advise and assisstance.

Thanks.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

BotDefense XFF when using CDN

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Changes to DO and AS3 GitHub - no longer monitored

GRE Tunnel Issue

Help with an iRule to disconnect active connections to Pool Members that are "offline"

GRPC through F5 Virtual Server [RST_STREAM with error code: INTERNAL_ERROR]

Illigal Parameter addition as custom signature set wanted to Unblock

Related Content

F5 Botdefense behind Cloudflare

Force BotDefense Captcha on Specified URL

Using the Model Context Protocol with Open WebUI

decrypted tcpdump capture without using an iRule and without using tshark

Using n8n To Orchestrate Multiple Agents

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS