Forum Discussion

Nimbostratus

Nov 01, 2016

possible to whitelist specific signatures for an IP?

Would it be possible to block all traffic which triggers a signature except for specific IPs or nodes? Ideally we’d like to minimize the protection relaxation. I’ve reviewed the IP Address Exceptions...

Cirrocumulus

Nov 01, 2016

jerm1020,

I'm not sure that is possible. One workaround is to have a seperate policy for those IP addresses and use a traffic policy or iRule to switch between the different policies.

Not great i imagine but i can't think of an alternative.

Hope this helps,

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

possible to whitelist specific signatures for an IP?

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

syslog over tcp and define management IP as source

Managing iRules configuration

Recommendation for Adv. Lab

Unable to Forward APM and AFM Logs to AWS CloudWatch Using Telemetry Streaming

How to configure ssh access by key on F5OS

Related Content

Logging/Blocking possible prompt injection

November Security Research Update: Newly Released Attack Signatures

NGINX App Protect v5 Signature Notifications

Custom Attack Signatures

Support of WAF Signature Staging in F5 Distributed Cloud (XC)

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS