For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

EdgardoDeGracia's avatar
EdgardoDeGracia
Icon for Nimbostratus rankNimbostratus
Apr 10, 2019

F5 Web Application CVE Signatures For AWS WAF - FALSE POSITIVE

I am using AWS and implemented the “F5 Web Application CVE Signatures For AWS WAF” manage rule from AWS marketplace.   I am copying the sample request that is false positive from the AWS WAF con...
cloud
F5 Rules for AWS WAF
Jeff_Giroux_F5's avatar
Jeff_Giroux_F5
Ret. Employee
Jan 07, 2020

Please follow the procedure detailed in K21015971: Overview of F5 RuleGroups for AWS WAF

 

Reporting false positives on DevCentral

 

With full request logging you can now report on a rule that generates too many false positives. To report false positives, complete the following:

 

  • Log three to five requests that the rule has flagged as malicious requests.
  • Make sure that the requests do not contain any sensitive information; if they do, please mask the sensitive data with ****.
  • Attach the requests to a message (Ask a Question) on the DevCentral Answers forum.