Bug ID 742753: Accessing the BIG-IP system's WebUI via special proxy solutions may fail

Last Modified: May 29, 2024

Affected Product(s):
BIG-IP All(all modules)

Known Affected Versions:
12.1.3,,,,,,,, 12.1.4,, 12.1.5,,,, 12.1.6, 13.1.0,,,,,,,,, 13.1.1,,,,, 13.1.3,,,,,,, 13.1.4,, 13.1.5,, 14.0.0,,,,,, 14.0.1,, 14.1.0,,,,,, 14.1.2,,,,,,,,, 14.1.3,, 14.1.4,,,,,,, 15.0.0, 15.0.1,,,,, 15.1.0,,,,,, 15.1.1, 15.1.2,, 15.1.3,, 15.1.4,, 15.1.5,, 15.1.6, 16.0.0,, 16.0.1,,, 16.1.0, 16.1.1, 16.1.2,

Fixed In:
17.0.0,,, 14.1.5

Opened: Sep 05, 2018

Severity: 4-Minor


If the BIG-IP system's WebUI is accessed via certain special proxy solutions, logging on to the system may fail.


Users cannot log on to the BIG-IP system's WebUI.


This issue is known to happen with special proxy solutions that do one of the following things: - Remove the Referer header. - Modify the HTTP request in such a way that the Referer and Host headers no longer tally with one another.


As a workaround, you can do any of the following things: - Access the BIG-IP system's WebUI directly (i.e., bypassing the problematic proxy solution). - Modify the proxy solution so that it does not remove the Referer header (this is only viable if the proxy does not alter the Host header). - Modify the proxy solution so that it inserts compatible Referer and Host headers.

Fix Information

CSRF checks based on HTTP headers pre-logon have been improved.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips