Forum Discussion
bfm
Nimbostratus
NimbostratusF5 AWAF - bypass request based on the pressence of a request header - value
Hello, We work with a service provider that need to automatically perform requests to our website. However this request has some values that triggers waf signatures. We would like to bypass those...
The irules are the way to go. Only for HTTP headers that have an ip addresses like X-Forwarded-For / Real Client IP you can make the WAF policy to use the ip address in the header and bypass the WAF by using the trusted IP addresses option.
bfmNimbostratus
NimbostratusHello,
Thanks for the help. I was trying to not use irules for this. Isn't there a way to whitelist based on a header using the graphical interface?
Thank you.
Nikoolayy1
MVP
MVPThe irules are the way to go. Only for HTTP headers that have an ip addresses like X-Forwarded-For / Real Client IP you can make the WAF policy to use the ip address in the header and bypass the WAF by using the trusted IP addresses option.