Forum Discussion

Altostratus

Jul 15, 2022

User is being blocked on F5 with because the email adress starts with "parent.

our f5 waf attach signatures is treating email addresses as risk and blocking the traffic. email address for people with surname 'parent' is not allowed. do we have a solution on how to allow this tr...

application delivery

Yoann_Le_Corvi1

Cumulonimbus

Jul 15, 2022

We would need more info, and possibly the request payload triggering the event. But my feeling is that you should be able do diasable that specific signature on the specific parameter where the email address is used. That way, you do not completely disable the signature for the whole policy.

But if you provide the detailed payload causing the issue, I will be able to be more specific.

Yoann

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

User is being blocked on F5 with because the email adress starts with "parent.

Recent Discussions

MAC address of deleted VS IP address still responsive

Different common name ssl acces 403 forbiddent

dynamic signature detection

DNS HM Probe issue

F5 looses the token for the first call

Related Content

Losing Requests because of health monitoring

Block IP after a number of ASM Blocks

Block traffic

Response and blocking page

domain blocking

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS