XFF AWAF

Question

Hello,I need to disable the rule that checks xff and saves the original IP address that comes from the request on AWAF v16. &nbsp;Do you have any idea how to do it?Best regards,N.

mohamed_ahmed_kansoh · Answer

Hi&nbsp;noplonik&nbsp;,&nbsp;Check 3 scopes of Configuration used to add this feature :&nbsp;1) Check the attached { http } Profile and opent it from Profiles sections , and disable "XFF" Feature , you will see it easly in http profile settings , but make sure you are selecting the http profile which attached to the required virtual server { Which contains AWAF policy }.&nbsp;2) Check if you are attaching an iRule in this Virtual server {&nbsp;&nbsp;Which contains AWAF policy } used to insert XFF header in HTTP requests, and see if you can delete it.
3)&nbsp;Check if you are attaching a LTM policy&nbsp; in this Virtual server {&nbsp;&nbsp;Which contains AWAF policy } used to insert XFF header in HTTP requests , and see if you can delete it.
&nbsp;

leslie_hubertus · Answer

Hi&nbsp;noplonik&nbsp; - did the reply from&nbsp;Mohamed_Ahmed_Kansoh&nbsp;help you? If yes, could you please hit the Accept as Solution button? And if no, please let us know what happened so we can keep trying to help.&nbsp;

Forum Discussion

XFF AWAF

Recent Discussions

self-directed requests fail because of no certificate

Decode ObjectSID from Base64-encode string

iRule - Url rewrite and header replace and pool selection not working

ip x-forwarding

F5 ASM API-Protection Policy

Related Content

Getting started with WAF Policy automation on BIG-IP AWAF

AWAF subscription

Removing F5 Leaked Credential Check (LCC) config from BIG-IP AWAF

XFF Universal Persistence iRule

HW - SERVER FOR AWAF

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS