Forum Discussion

Nimbostratus

Jan 07, 2022

Impact of adding new rules in Block mode

When new rules are added to a managed rule set, they are added in Block mode. In a production environment, that could cause legitimate traffic to start being blocked. How are customers supposed...

Employee

Jan 14, 2022

Hi,

1. Unlike traditional, full blown WAF security solutions, the content of F5 rules is not visible and cannot be viewed.

2. Rules are updated approximately once per quarter.

3. In production environment if the legitimate traffic is blocked after rules update, please disable the rule that blocked your service .

4. Send us the HTTP request that was blocked with the name of the rule that matched it. We will analyze the details to determine the root cause and proposed solution.

Thanks

Mohamedfaizur

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Impact of adding new rules in Block mode

Recent Discussions

Reporting Help Needed

Switch ssl profile based on weak cipher detection via IRULE

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

full-proxy HTTP2

Related Content

F5 Distributed Cloud Origin Server Subset Rules

F5 NGINX HTTP Request Header Rules: What’s Permitted and What’s Not

Remove subnet from NAT pools without any impact

LTM Cipher rule

F5 Distributed Cloud Network Firewall Rule Evaluation and Packet Flow

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS