Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions
Custom Alert Banner

F5 AppWorld 2024 session proposal deadline extended to Friday, December 8th!

BotDefense XFF when using CDN

ismail2
Nimbostratus
Nimbostratus

‎28-Jun-2020 23:51

I am having trouble with Bot-Defense detecting the client_ip (XFF) when using cloudflare.

 

The ASM Profile is working fine when i add custom header and enable X-Forwarded-For although the BotDefense is still picking the clientIP incorrectly.?

 

The botdefense requests page does show the proper X-Forwarded-For IP although its still not picking this up as the client_ip

Labels:
1 REPLY 1

Emil
Altocumulus
Altocumulus

‎19-Sep-2022 08:36 - edited ‎20-Sep-2022 01:32

I am having the same issue. Did you manage to fix it? In my case I have CloudFlare CDN in front of the f5 AWAF.

What is the best implementation in this setup?

1. CF is considered as upstream proxy and set HTTP profile with trust XFF

2. Use irule to change cloudflare headers into XFF; X-real-ip. Botdefense seems to match cloudflare as a malicious bot.

I will appreciate any advise and assisstance.

Thanks.

0 Kudos
Copyright © 2023 Khoros, LLC