Forum Discussion

Yosi_373863's avatar
Yosi_373863
Icon for Nimbostratus rankNimbostratus
Oct 07, 2018

"F5 Rules for AWS WAF Web exploits" blocks client request with large body

After I added "F5 Rules for AWS WAF Web exploits" to our AWS load balancer Web ACL I started seeing that calls to one of our APIs are being blocked. This API is being used to allow users save their t...
application delivery
AWS
F5 Rules for AWS WAF
Jeff_Giroux_F5's avatar
Jeff_Giroux_F5
Ret. Employee
Jan 07, 2020

Please follow the procedure detailed in K21015971: Overview of F5 RuleGroups for AWS WAF

 

Reporting false positives on DevCentral

 

With full request logging you can now report on a rule that generates too many false positives. To report false positives, complete the following:

 

  • Log three to five requests that the rule has flagged as malicious requests.
  • Make sure that the requests do not contain any sensitive information; if they do, please mask the sensitive data with ****.
  • Attach the requests to a message (Ask a Question) on the DevCentral Answers forum.