Forum Discussion

ismail2's avatar
ismail2
Icon for Nimbostratus rankNimbostratus
Jun 29, 2020

BotDefense XFF when using CDN

I am having trouble with Bot-Defense detecting the client_ip (XFF) when using cloudflare.

 

The ASM Profile is working fine when i add custom header and enable X-Forwarded-For although the BotDefense is still picking the clientIP incorrectly.?

 

The botdefense requests page does show the proper X-Forwarded-For IP although its still not picking this up as the client_ip

1 Reply

  • Emil's avatar
    Emil
    Icon for Altocumulus rankAltocumulus

    I am having the same issue. Did you manage to fix it? In my case I have CloudFlare CDN in front of the f5 AWAF.

    What is the best implementation in this setup?

    1. CF is considered as upstream proxy and set HTTP profile with trust XFF

    2. Use irule to change cloudflare headers into XFF; X-real-ip. Botdefense seems to match cloudflare as a malicious bot.

    I will appreciate any advise and assisstance.

    Thanks.