Forum Discussion

Nimbostratus

Jan 13, 2023

F5 rules for AWS WAF: API Blocked Due to F5 Rule set

Hello, We have WAF ACL "bl-prd-crm-acl" for our production workload. One of our production api URL was got blocked due to this as it was due to F5 Rule. with error 403 forbidden. Time Frame...

cloud

vaibhavkumar-savkare

Nimbostratus

Hello,

I am checking with my team if I can share packet payload or not.

Till then can you please provide detailed documentaion for ruleid=rule_XSS_script_tag__Parameter__AllQueryArguments_Body

[{rulegroupid=F5#OWASP_Managed, terminatingrule={ruleid=rule_XSS_script_tag__Parameter__AllQueryArguments_Body, action=BLOCK, rulematchdetails=null}, nonterminatingmatchingrules=[], excludedrules=null}]

Joel_Cohen

Employee

Feb 01, 2023

Hello,

The rule mentioned is related to cross-site scripting. Unlike traditional, full blown WAF security solutions, the content and detailed descriptions of F5 rules cannot be viewed.

If the rule was blocking legitimate traffic, you can disable it.

I hope this helps

Thanks

Joel

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

F5 rules for AWS WAF: API Blocked Due to F5 Rule set

Recent Discussions

Reporting Help Needed

Switch ssl profile based on weak cipher detection via IRULE

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

full-proxy HTTP2

Related Content

F5 rules for AWS WAF Terraform

F5 Rules for AWS WAF - Rule ID to Attack Type Reference

ASM/WAF Management Automation - TMOS

Introduction of IDS and WAF

Minimizing Security Complexity: Managing Distributed WAF Policies

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS