For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Hamza's avatar
Hamza
Icon for Cirrus rankCirrus
Mar 03, 2023
Solved

Enforce RFC Compliance option in http profile

Hello,

I would like to know the impact after enabling the folowing option in http profile : 

Thanks in advance.

 

application delivery
  • Mohamed_Ahmed_Kansoh's avatar
    Mohamed_Ahmed_Kansoh
    Mar 04, 2023

    Hi Hamza , 

    I think you should watch out when enabling RFC option in any http profile , Although it doesn't make a full RFC Validation checks but may impact some valid users , I suggest you can perform this in a test environment first to have a very good experience with your Web application nature. 
    OR 
    if you have a ASM/AWAF provisioned module you can check it in ASM policy settings " http Compliance " item , at ASM level you will have varity and you can learn and take a sufficient amount of traffic that my conflict with the RFC Compliance 

2 Replies

  • Mohamed_Ahmed_Kansoh's avatar
    Mohamed_Ahmed_Kansoh
    Icon for MVP rankMVP
    Mar 04, 2023

    Hi Hamza , 

    I think you should watch out when enabling RFC option in any http profile , Although it doesn't make a full RFC Validation checks but may impact some valid users , I suggest you can perform this in a test environment first to have a very good experience with your Web application nature. 
    OR 
    if you have a ASM/AWAF provisioned module you can check it in ASM policy settings " http Compliance " item , at ASM level you will have varity and you can learn and take a sufficient amount of traffic that my conflict with the RFC Compliance