XFF AWAF

Question

Hello,I need to disable the rule that checks xff and saves the original IP address that comes from the request on AWAF v16. &nbsp;Do you have any idea how to do it?Best regards,N.

mohamed_ahmed_kansoh · Answer

Hi&nbsp;noplonik&nbsp;,&nbsp;Check 3 scopes of Configuration used to add this feature :&nbsp;1) Check the attached { http } Profile and opent it from Profiles sections , and disable "XFF" Feature , you will see it easly in http profile settings , but make sure you are selecting the http profile which attached to the required virtual server { Which contains AWAF policy }.&nbsp;2) Check if you are attaching an iRule in this Virtual server {&nbsp;&nbsp;Which contains AWAF policy } used to insert XFF header in HTTP requests, and see if you can delete it.
3)&nbsp;Check if you are attaching a LTM policy&nbsp; in this Virtual server {&nbsp;&nbsp;Which contains AWAF policy } used to insert XFF header in HTTP requests , and see if you can delete it.
&nbsp;

leslie_hubertus · Answer

Hi&nbsp;noplonik&nbsp; - did the reply from&nbsp;Mohamed_Ahmed_Kansoh&nbsp;help you? If yes, could you please hit the Accept as Solution button? And if no, please let us know what happened so we can keep trying to help.&nbsp;

Forum Discussion

XFF AWAF

2 Replies

Recent Discussions

import live updates from version x to version y

Tenant image upgrade

iRule editor partition button does not work

F5Access | MacOS Sonoma

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Related Content

Getting started with WAF Policy automation on BIG-IP AWAF

AWAF subscription

F5 ICAP over SSL/TLS (Secure ICAP) with F5 ASM/AWAF Antivirus Protection feature

Secure Your Epic Applications in a Flash with F5 FAST Templates & Declarative AWAF Policies

Export BIG-IP AWAF URLs to Swagger File