cancel
Showing results for 
Search instead for 
Did you mean: 

IP address exception

Sharath413
Nimbostratus
Nimbostratus

I'm new to F5 and we recently implemented WAF in one-arm mode. I'm getting quite a few complaints from web developers about some of their HTTP requests getting blocked. I was thinking if it's a better idea to add RFC 1918 addresses to the IP address exception list and select "never block this IP"?

Can someone please advise if it's a good solution?

Thanks.

1 ACCEPTED SOLUTION

Lidev
MVP
MVP

Hello,

 

if you consider IP address as being safe, you can set a address exception and categorized Wed Developpers IP Adresses as Trusted IP.

Regards

View solution in original post

3 REPLIES 3

Lidev
MVP
MVP

Hello,

 

if you consider IP address as being safe, you can set a address exception and categorized Wed Developpers IP Adresses as Trusted IP.

Regards

 Thanks for responding. I made the exception to just "never block the IP' but didn't add the IP as trusted IP. I was told that adding the IP as trusted will cause Big-IP to build policy signatures based on their traffic. I surely didn't want to do that.

OK Sharath413,

If this answer was helpful, please don't forget to mark the answer as "Select as Best" in order to pass your post as resolved and help other people to find it.