Config NGINX to F5
- Jan 11, 2023
Hi Satriaji , there are no equivalent settings within Local Traffic Manager but rather they can be found in Application Security Manager or AWAF.
client_max_body_size (awaf setting – file uploads max size)
client_body_buffer_size (awaf setting – advanced config -> System Variables -> request_buffer_size)
client_body_timeout and client_header_timeout (awaf setting - advanced config -> System Variables -> slow_transaction_timeout) Note: we can do idle timeouts with Fasthttp profiles but not standard http profiles.
These are our default profile timeouts. https://support.f5.com/csp/article/K7606 The standard http profile will make it so a (tcp) connection to the backend will not occur until it has a fully rfc compliant http request from the client so it does offer some native protection from slow http type attacks.
Good article on mitigating slow post if that’s a primary concern here. https://support.f5.com/csp/article/K42552578