I'm new to F5 and we recently implemented WAF in one-arm mode. I'm getting quite a few complaints from web developers about some of their HTTP requests getting blocked. I was thinking if it's a better idea to add RFC 1918 addresses to the IP address exception list and select "never block this IP"?
Can someone please advise if it's a good solution?
Solved! Go to Solution.
Thanks for responding. I made the exception to just "never block the IP' but didn't add the IP as trusted IP. I was told that adding the IP as trusted will cause Big-IP to build policy signatures based on their traffic. I surely didn't want to do that.