diff --git a/content/waf/changelog/2023.md b/content/waf/changelog/2023.md index c2f8913a67..3565385dba 100644 --- a/content/waf/changelog/2023.md +++ b/content/waf/changelog/2023.md @@ -1,6 +1,6 @@ --- title: "2023 archive" -weight: 200 +weight: 400 toc: true nd-content-type: reference nd-product: F5WAFN diff --git a/content/waf/changelog/2024.md b/content/waf/changelog/2024.md index f1e84eb14f..3af12ecd4d 100644 --- a/content/waf/changelog/2024.md +++ b/content/waf/changelog/2024.md @@ -1,6 +1,6 @@ --- title: "2024 archive" -weight: 100 +weight: 300 toc: true nd-content-type: reference nd-product: F5WAFN diff --git a/content/waf/changelog/2025.md b/content/waf/changelog/2025.md new file mode 100644 index 0000000000..0491a1a8e6 --- /dev/null +++ b/content/waf/changelog/2025.md @@ -0,0 +1,244 @@ +--- +title: "2025 archive" +weight: 200 +toc: true +nd-content-type: reference +nd-product: F5WAFN +--- + +This page is an archive of changelog entries for 2024. + +For the current year, view [the top-level changelog]({{< ref "/waf/changelog/">}}) topic. + +## F5 WAF for NGINX 5.10 + +Released _December 1st, 2025_. + +### New features + +- Added support for NGINX Plus R36 +- Added support for Alpine 3.22 + +### Important notes + +- Alpine 3.19 is no longer supported +- Upgrade Go compiler to 1.24.10 + +### Resolved issues + +- 13117 - Severity Field should contain a value based on the violation highest severity +- 13138 - Ability to bypass request when there is a 444 scenario +- 13130 - add --all-policy-signatures option to include all policy signatures in the conversion output +- 12979 - fixing a scenario of CLOSE_WAIT connections error messages when using big POST request + +### Packages + +{{< table >}} + +| Distribution name | NGINX Open Source (5.10) | NGINX Plus (5.10) | NGINX Plus (5.10) | +| ------------------------ | ----------------------------------------------------------------- | -------------------------------------------------------------- |----------------------------------------------------| +| Alpine 3.22 | _app-protect-module-oss-1.29.3+5.550.0-r1.apk_ | _app-protect-module-plus-36+5.550.0-r1.apk_ | _app-protect-36.5.550.0-r1.apk_ | +| Amazon Linux 2023 | _app-protect-module-oss-1.29.3+5.550.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-module-plus-36+5.550.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-36+5.550.0-1.amzn2023.ngx.x86_64.rpm_ | +| Debian 11 | _app-protect-module-oss_1.29.3+5.550.0-1\~bullseye_amd64.deb_ | _app-protect-module-plus_36+5.550.0--1\~bullseye_amd64.deb_ | _app-protect_36+5.550.0-1\~bullseye_amd64.deb_ | +| Debian 12 | _app-protect-module-oss_1.29.3+5.550.0-1\~bookworm_amd64.deb_ | _app-protect-module-plus_36+5.550.0--1\~bookworm_amd64.deb_ | _app-protect_36+5.550.0-1\~bookworm_amd64.deb_ | +| Oracle Linux 8.1 | _app-protect-module-oss-1.29.3+5.550.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-36+5.550.0-1.el8.ngx.x86_64.rpm_ | _app-protect-36+5.550.0-1.el8.ngx.x86_64.rpm_ | +| Ubuntu 22.04 | _app-protect-module-oss_1.29.3+5.550.0-1\~jammy_amd64.deb_ | _app-protect-module-plus_36+5.550.0--1\~jammy_amd64.deb_ | _app-protect_36+5.550.0-1\~jammy_amd64.deb_ | +| Ubuntu 24.04 | _app-protect-module-oss_1.29.3+5.550.0-1\~noble_amd64.deb_ | _app-protect-module-plus_36+5.550.0--1\~noble_amd64.deb_ | _app-protect_36+5.550.0-1\~noble_amd64.deb_ | +| RHEL 8 and Rocky Linux 8 | _app-protect-module-oss-1.29.3+5.550.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-36+5.550.0-1.el8.ngx.x86_64.rpm_ | _app-protect-36+5.550.0-1.el8.ngx.x86_64.rpm_ | +| RHEL 9 and Rocky Linux 9 | _app-protect-module-oss-1.29.3+5.550.0-1.el9.ngx.x86_64.rpm_ | _app-protect-module-plus-36+5.550.0-1.el9.ngx.x86_64.rpm_ | _app-protect-36+5.550.0-1.el9.ngx.x86_64.rpm_ | + +{{< /table >}} + +## F5 WAF for NGINX 5.9 + +Released _September 29th, 2025_. + +### New features + +- Added Kubernetes operations improvements as early availability + +### Important notes + +- Renamed F5 NGINX App Protect WAF to F5 WAF for NGINX +- Aligned F5 WAF for NGINX versions + - Package and container artifacts now share the same version numbers + - Upgrade processes remain the same as earlier releases + - No breaking changes + +{{< call-out "important" >}} + +"_V4_" is now represented in the following pages or sections: + +- [Virtual machine or bare metal]({{< ref "/waf/install/virtual-environment.md">}}) +- Docker [Hybrid]({{< ref "/waf/install/docker.md#hybrid-configuration" >}}) and [Single container]({{< ref "/waf/install/docker.md#single-container-configuration" >}}) configuration + +"_V5_" is now represented in the following pages or sections: + +- [Kubernetes]({{< ref "/waf/install/kubernetes.md">}}) +- Docker [Multi-container]({{< ref "/waf/install/docker.md#multi-container-configuration" >}}) configuration + +{{< /call-out >}} + +- Restructured documentation + - Product name change + - Version alignment + - Grouped use cases into sections with single-purpose documents +- Upgrade Go compiler to 1.23.12 + +### Packages + +{{< table >}} + +| Distribution name | NGINX Open Source (5.9) | NGINX Plus (5.9) | NGINX Plus (5.9) | +| ------------------------ | ----------------------------------------------------------------- | -------------------------------------------------------------- |------------------ | +| Alpine 3.19 | _app-protect-module-oss-1.29.0+5.527.0-r1.apk_ | _app-protect-module-plus-35+5.527.0-r1.apk_ | _app-protect-35.5.527.0-r1.apk_ | +| Amazon Linux 2023 | _app-protect-module-oss-1.29.0+5.527.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-module-plus-35+5.527.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-35+5.527.0-1.amzn2023.ngx.x86_64.rpm_ | +| Debian 11 | _app-protect-module-oss_1.29.0+5.527.0-1\~bullseye_amd64.deb_ | _app-protect-module-plus_35+5.527.0-1\~bullseye_amd64.deb_ | _app-protect_35+5.527.0-1\~bullseye_amd64.deb_ | +| Debian 12 | _app-protect-module-oss_1.29.0+5.527.0-1\~bookworm_amd64.deb_ | _app-protect-module-plus_35+5.527.0-1\~bookworm_amd64.deb_ | _app-protect_35+5.527.0-1\~bookworm_amd64.deb_ | +| Oracle Linux 8.1 | _app-protect-module-oss-1.29.0+5.527.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-35+5.527.0-1.el8.ngx.x86_64.rpm_ | _app-protect-35+5.527.0-1.el8.ngx.x86_64.rpm_ | +| RHEL 8 and Rocky Linux 8 | _app-protect-module-oss-1.29.0+5.527.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-35+5.527.0-1.el8.ngx.x86_64.rpm_ | _app-protect-35+5.527.0-1.el8.ngx.x86_64.rpm_ | +| RHEL 9 and Rocky Linux 9 | _app-protect-module-oss-1.29.0+5.527.0-1.el9.ngx.x86_64.rpm_ | _app-protect-module-plus-35+5.527.0-1.el8.ngx.x86_64.rpm_ | _app-protect-35+5.527.0-1.el9.ngx.x86_64.rpm_ | +| Ubuntu 22.04 | _app-protect-module-oss_1.29.0+5.527.0-1\~jammy_amd64.deb_ | _app-protect-module-plus_35+5.527.0-1\~jammy_amd64.deb_ | _app-protect_35+5.527.0-1\~jammy_amd64.deb_ | +| Ubuntu 24.04 | _app-protect-module-oss_1.29.0+5.527.0-1\~noble_amd64.deb_ | _app-protect-module-plus_35+5.527.0-1\~noble_amd64.deb_ | _app-protect_35+5.527.0-1\~noble_amd64.deb_ | + +{{< /table >}} + +## F5 NGINX App Protect WAF 5.8 / 4.16 + +Released _August 13th, 2025_. + +### New features + +- Added support for NGINX Plus R35 + +### Packages + +{{< table >}} + +| Distribution name | NGINX Open Source (5.8) | NGINX Plus (5.8) | NGINX Plus (4.16) | +| ------------------------ | ----------------------------------------------------------------- | -------------------------------------------------------------- |------------------ | +| Alpine 3.19 | _app-protect-module-oss-1.29.0+5.498.0-r1.apk_ | _app-protect-module-plus-35+5.498.0-r1.apk_ | _app-protect-35.5.498.0-r1.apk_ | +| Amazon Linux 2023 | _app-protect-module-oss-1.29.0+5.498.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-module-plus-35+5.498.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-35+5.498.0-1.amzn2023.ngx.x86_64.rpm_ | +| Debian 11 | _app-protect-module-oss_1.29.0+5.498.0-1\~bullseye_amd64.deb_ | _app-protect-module-plus_35+5.498.0-1\~bullseye_amd64.deb_ | _app-protect_35+5.498.0-1\~bullseye_amd64.deb_ | +| Debian 12 | _app-protect-module-oss_1.29.0+5.498.0-1\~bookworm_amd64.deb_ | _app-protect-module-plus_35+5.498.0-1\~bookworm_amd64.deb_ | _app-protect_35+5.498.0-1\~bookworm_amd64.deb_ | +| Oracle Linux 8.1 | _app-protect-module-oss-1.29.0+5.498.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-35+5.498.0-1.el8.ngx.x86_64.rpm_ | _app-protect-35+5.498.0-1.el8.ngx.x86_64.rpm_ | +| Ubuntu 22.04 | _app-protect-module-oss_1.29.0+5.498.0-1\~jammy_amd64.deb_ | _app-protect-module-plus_35+5.498.0-1\~jammy_amd64.deb_ | _app-protect_35+5.498.0-1\~jammy_amd64.deb_ | +| Ubuntu 24.04 | _app-protect-module-oss_1.29.0+5.498.0-1\~noble_amd64.deb_ | _app-protect-module-plus_35+5.498.0-1\~noble_amd64.deb_ | _app-protect_35+5.498.0-1\~noble_amd64.deb_ | +| RHEL 8 and Rocky Linux 8 | _app-protect-module-oss-1.29.0+5.498.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-35+5.498.0-1.el8.ngx.x86_64.rpm_ | _app-protect-35+5.498.0-1.el8.ngx.x86_64.rpm_ | +| RHEL 9 and Rocky Linux 9 | _app-protect-module-oss-1.29.0+5.498.0-1.el9.ngx.x86_64.rpm_ | _app-protect-module-plus-35+5.498.0-1.el8.ngx.x86_64.rpm_ | _app-protect-35+5.498.0-1.el9.ngx.x86_64.rpm_ | + +{{< /table >}} + +## F5 NGINX App Protect WAF 5.7 / 4.15 + +Released _June 24th, 2025_. + +### New features + +- Added support for Rocky Linux 9 +- Added support for IP Intelligence +- Added support for Override rules for IP Address Lists + +### Important notes + +- Ubuntu 20.04 is no longer supported +- (12447) Upgrade libk5crypto3 package +- (12520) Upgrade Go compiler to 1.23.8 + +### Resolved issues + +- (12527) Remove CPAN - installed certs and source files +- (11112) Remove systemd/init.d leftovers in NAP WAF v5 pkgs +- (12400) Cookie attributes are not added to a TS cookie when there is more than one TS cookie +- (12498) Undefined behavior when using huge XFF +- (12731) Multiple clean_resp_reset internal error messages in logs when loading NAP + +### Packages + +{{< table >}} + +| Distribution name | NGINX Open Source (5.7) | NGINX Plus (5.7) | NGINX Plus (4.15) | +| ------------------------ | ----------------------------------------------------------------- | -------------------------------------------------------------- |----------------------------------------------------| +| Alpine 3.19 | _app-protect-module-oss-1.27.4+5.442.0-r1.apk_ | _app-protect-module-plus-34+5.442.0-r1.apk_ | _app-protect-34.5.442.0-r1.apk_ | +| Amazon Linux 2023 | _app-protect-module-oss-1.27.4+5.442.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.442.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-34+5.442.0-1.amzn2023.ngx.x86_64.rpm_ | +| Debian 11 | _app-protect-module-oss_1.27.4+5.442.0-1\~bullseye_amd64.deb_ | _app-protect-module-plus_34+5.442.0-1\~bullseye_amd64.deb_ | _app-protect_34+5.442.0-1\~bullseye_amd64.deb_ | +| Debian 12 | _app-protect-module-oss_1.27.4+5.442.0-1\~bookworm_amd64.deb_ | _app-protect-module-plus_34+5.442.0-1\~bookworm_amd64.deb_ | _app-protect_34+5.442.0-1\~bookworm_amd64.deb_ | +| Oracle Linux 8.1 | _app-protect-module-oss-1.27.4+5.442.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.442.0-1.el8.ngx.x86_64.rpm_ | _app-protect-34+5.442.0-1.el8.ngx.x86_64.rpm_ | +| Ubuntu 22.04 | _app-protect-module-oss_1.27.4+5.442.0-1\~jammy_amd64.deb_ | _app-protect-module-plus_34+5.442.0-1\~jammy_amd64.deb_ | _app-protect_34+5.442.0-1\~jammy_amd64.deb_ | +| Ubuntu 24.04 | _app-protect-module-oss_1.27.4+5.442.0-1\~noble_amd64.deb_ | _app-protect-module-plus_34+5.442.0-1\~noble_amd64.deb_ | _app-protect_34+5.442.0-1\~noble_amd64.deb_ | +| RHEL 8 and Rocky Linux 8 | _app-protect-module-oss-1.27.4+5.442.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.442.0-1.el8.ngx.x86_64.rpm_ | _app-protect-34+5.442.0-1.el8.ngx.x86_64.rpm_ | +| RHEL 9 and Rocky Linux 9 | _app-protect-module-oss-1.27.4+5.442.0-1.el9.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.442.0-1.el9.ngx.x86_64.rpm_ | _app-protect-34+5.442.0-1.el9.ngx.x86_64.rpm_ | + | + +{{< /table >}} + +## F5 NGINX App Protect WAF 5.6 / 4.14 + +Released _April 1st, 2025_. + +### New features + +- Added support for NGINX Plus R34 +- **5.6 Only:** You can now [deploy F5 WAF for NGINX 5+ using a Helm chart]({{< ref "/waf/install/kubernetes.md">}}) + +### Important notes + +- Alpine 3.17 is no longer supported + +### Resolved issues + +- Upgraded the Go compiler to 1.23.7 +- (12140) Changed the maximum memory of the XML processing engine to 8GB +- (12254) A modified YAML file referenced by a JSON policy file causes a reload error when running `nginx -t` +- (12296) "Violation Bad Unescape" is not enabled by default +- (12297) "Violation Encoding" is not enabled by default + +### Packages + +{{< table >}} + +| Distribution name | NGINX Open Source (5.6) | NGINX Plus (5.6) | NGINX Plus (4.14) | +| ------------------------ | ----------------------------------------------------------------- | -------------------------------------------------------------- |----------------------------------------------------| +| Alpine 3.19 | _app-protect-module-oss-1.27.4+5.342.0-r1.apk_ | _app-protect-module-plus-34+5.342.0-r1.apk_ | _app-protect-34.5.342.0-r1.apk_ | +| Amazon Linux 2023 | _app-protect-module-oss-1.27.4+5.342.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.342.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-34+5.342.0-1.amzn2023.ngx.x86_64.rpm_ | +| Debian 11 | _app-protect-module-oss_1.27.4+5.342.0-1\~bullseye_amd64.deb_ | _app-protect-module-plus_34+5.342.0-1\~bullseye_amd64.deb_ | _app-protect_34+5.342.0-1\~bullseye_amd64.deb_ | +| Debian 12 | _app-protect-module-oss_1.27.4+5.342.0-1\~bookworm_amd64.deb_ | _app-protect-module-plus_34+5.342.0-1\~bookworm_amd64.deb_ | _app-protect_34+5.342.0-1\~bookworm_amd64.deb_ | +| Oracle Linux 8.1 | _app-protect-module-oss-1.27.4+5.342.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.342.0-1.el8.ngx.x86_64.rpm_ | _app-protect-34+5.342.0-1.el8.ngx.x86_64.rpm_ | +| Ubuntu 20.04 | _app-protect-module-oss_1.27.4+5.342.0-1\~focal_amd64.deb_ | _app-protect-module-plus_34+5.342.0-1\~focal_amd64.deb_ | _app-protect_34+5.342.0-1\~focal_amd64.deb_ | +| Ubuntu 22.04 | _app-protect-module-oss_1.27.4+5.342.0-1\~jammy_amd64.deb_ | _app-protect-module-plus_34+5.342.0-1\~jammy_amd64.deb_ | _app-protect_34+5.342.0-1\~jammy_amd64.deb_ | +| Ubuntu 24.04 | _app-protect-module-oss_1.27.4+5.342.0-1\~noble_amd64.deb_ | _app-protect-module-plus_34+5.342.0-1\~noble_amd64.deb_ | _app-protect_34+5.342.0-1\~noble_amd64.deb_ | +| RHEL 8 and Rocky Linux 8 | _app-protect-module-oss-1.27.4+5.342.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.342.0-1.el8.ngx.x86_64.rpm_ | _app-protect-34+5.342.0-1.el8.ngx.x86_64.rpm_ | +| RHEL 9 | _app-protect-module-oss-1.27.4+5.342.0-1.el9.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.342.0-1.el9.ngx.x86_64.rpm_ | _app-protect-34+5.342.0-1.el9.ngx.x86_64.rpm_ | + +{{< /table >}} + +## F5 NGINX App Protect WAF 5.5 / 4.13 + +Released _January 30th, 2025_. + +### New features + +- Added support for Alpine 3.19 +- Added support for [Brute force attack preventions]({{< ref "/waf/policies/brute-force-attacks.md" >}}) +- **5.5 Only:** Enforcer can now upgrade without requiring policies to be recompiled +- **5.5 Only:** The standalone converter within the Compiler now supports [user-defined signatures]({{< ref "/waf/configure/compiler.md#user-defined-signatures" >}}). + +### Packages + +{{< table >}} + +| Distribution name | NGINX Open Source (5.5) | NGINX Plus (5.5) | NGINX Plus (4.13) | +| ------------------------ | ----------------------------------------------------------------- | -------------------------------------------------------------- |----------------------------------------------------| +| Alpine 3.17 | _app-protect-module-oss-1.27.4+5.210.0-r1.apk_ | _app-protect-module-plus-34+5.210.0-r1.apk_ | _app-protect-34.5.210.0-r1.apk_ | +| Alpine 3.19 | _app-protect-module-oss-1.27.4+5.210.0-r1.apk_ | _app-protect-module-plus-34+5.210.0-r1.apk_ | _app-protect-34.5.210.0-r1.apk_ | +| Amazon Linux 2023 | _app-protect-module-oss-1.27.4+5.210.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.210.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-34+5.210.0-1.amzn2023.ngx.x86_64.rpm_ | +| Debian 11 | _app-protect-module-oss_1.27.4+5.210.0-1\~bullseye_amd64.deb_ | _app-protect-module-plus_34+5.210.0-1\~bullseye_amd64.deb_ | _app-protect_34+5.210.0-1\~bullseye_amd64.deb_ | +| Debian 12 | _app-protect-module-oss_1.27.4+5.210.0-1\~bookworm_amd64.deb_ | _app-protect-module-plus_34+5.210.0-1\~bookworm_amd64.deb_ | _app-protect_34+5.210.0-1\~bookworm_amd64.deb_ | +| Oracle Linux 8.1 | _app-protect-module-oss-1.27.4+5.210.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.210.0-1.el8.ngx.x86_64.rpm_ | _app-protect-34+5.210.0-1.el8.ngx.x86_64.rpm_ | +| Ubuntu 20.04 | _app-protect-module-oss_1.27.4+5.210.0-1\~focal_amd64.deb_ | _app-protect-module-plus_34+5.210.0-1\~focal_amd64.deb_ | _app-protect_34+5.210.0-1\~focal_amd64.deb_ | +| Ubuntu 22.04 | _app-protect-module-oss_1.27.4+5.210.0-1\~jammy_amd64.deb_ | _app-protect-module-plus_34+5.210.0-1\~jammy_amd64.deb_ | _app-protect_34+5.210.0-1\~jammy_amd64.deb_ | +| Ubuntu 24.04 | _app-protect-module-oss_1.27.4+5.210.0-1\~noble_amd64.deb_ | _app-protect-module-plus_34+5.210.0-1\~noble_amd64.deb_ | _app-protect_34+5.210.0-1\~noble_amd64.deb_ | +| RHEL 8 and Rocky Linux 8 | _app-protect-module-oss-1.27.4+5.210.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.210.0-1.el8.ngx.x86_64.rpm_ | _app-protect-34+5.210.0-1.el8.ngx.x86_64.rpm_ | +| RHEL 9 | _app-protect-module-oss-1.27.4+5.210.0-1.el9.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.210.0-1.el9.ngx.x86_64.rpm_ | _app-protect-34+5.210.0-1.el9.ngx.x86_64.rpm_ | + +{{< /table >}} diff --git a/content/waf/changelog/_index.md b/content/waf/changelog/_index.md index ea7cc5fcb7..a37a0b4f46 100644 --- a/content/waf/changelog/_index.md +++ b/content/waf/changelog/_index.md @@ -7,238 +7,41 @@ nd-content-type: reference nd-product: F5WAFN --- -This changelog lists all of the information for F5 WAF for NGINX releases in 2025. +This changelog lists all of the information for F5 WAF for NGINX releases in 2026. -For older releases, check the changelogs for previous years: [2024]({{< ref "/waf/changelog/2024.md" >}}), [2023]({{< ref "/waf/changelog/2023.md" >}}). +For older releases, check the changelogs for previous years: [2025]({{< ref "/waf/changelog/2025.md" >}}), [2024]({{< ref "/waf/changelog/2024.md" >}}), [2023]({{< ref "/waf/changelog/2023.md" >}}). -## F5 WAF for NGINX 5.10 +## F5 WAF for NGINX 5.11 -Released _December 1st, 2025_. +Released _January 13th, 2026_. ### New features -- Added support for NGINX Plus R36 -- Added support for Alpine 3.22 +- Added support for the Brotli data compression algorithm ### Important notes -- Alpine 3.19 is no longer supported -- Upgrade Go compiler to 1.24.10 +- Upgrade Go compiler to 1.24.11 ### Resolved issues -- 13117 - Severity Field should contain a value based on the violation highest severity -- 13138 - Ability to bypass request when there is a 444 scenario -- 13130 - add --all-policy-signatures option to include all policy signatures in the conversion output +- 13340 - F5 WAF for NGINX leaked sockets and terminated on-going requests during graceful reload of NGINX (SIGHUP) +- 12728 - Fixing a scenario under memory pressure, causing NGINX to return HTTP 503 and log SECURITY_WAF_BYPASS ### Packages {{< table >}} -| Distribution name | NGINX Open Source (5.10) | NGINX Plus (5.10) | NGINX Plus (5.10) | +| Distribution name | NGINX Open Source (5.11) | NGINX Plus (5.11) | NGINX Plus (5.11) | | ------------------------ | ----------------------------------------------------------------- | -------------------------------------------------------------- |----------------------------------------------------| -| Alpine 3.22 | _app-protect-module-oss-1.29.3+5.550.0-r1.apk_ | _app-protect-module-plus-36+5.550.0-r1.apk_ | _app-protect-36.5.550.0-r1.apk_ | -| Amazon Linux 2023 | _app-protect-module-oss-1.29.3+5.550.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-module-plus-36+5.550.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-36+5.550.0-1.amzn2023.ngx.x86_64.rpm_ | -| Debian 11 | _app-protect-module-oss_1.29.3+5.550.0-1\~bullseye_amd64.deb_ | _app-protect-module-plus_36+5.550.0--1\~bullseye_amd64.deb_ | _app-protect_36+5.550.0-1\~bullseye_amd64.deb_ | -| Debian 12 | _app-protect-module-oss_1.29.3+5.550.0-1\~bookworm_amd64.deb_ | _app-protect-module-plus_36+5.550.0--1\~bookworm_amd64.deb_ | _app-protect_36+5.550.0-1\~bookworm_amd64.deb_ | -| Oracle Linux 8.1 | _app-protect-module-oss-1.29.3+5.550.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-36+5.550.0-1.el8.ngx.x86_64.rpm_ | _app-protect-36+5.550.0-1.el8.ngx.x86_64.rpm_ | -| Ubuntu 22.04 | _app-protect-module-oss_1.29.3+5.550.0-1\~jammy_amd64.deb_ | _app-protect-module-plus_36+5.550.0--1\~jammy_amd64.deb_ | _app-protect_36+5.550.0-1\~jammy_amd64.deb_ | -| Ubuntu 24.04 | _app-protect-module-oss_1.29.3+5.550.0-1\~noble_amd64.deb_ | _app-protect-module-plus_36+5.550.0--1\~noble_amd64.deb_ | _app-protect_36+5.550.0-1\~noble_amd64.deb_ | -| RHEL 8 and Rocky Linux 8 | _app-protect-module-oss-1.29.3+5.550.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-36+5.550.0-1.el8.ngx.x86_64.rpm_ | _app-protect-36+5.550.0-1.el8.ngx.x86_64.rpm_ | -| RHEL 9 and Rocky Linux 9 | _app-protect-module-oss-1.29.3+5.550.0-1.el9.ngx.x86_64.rpm_ | _app-protect-module-plus-36+5.550.0-1.el9.ngx.x86_64.rpm_ | _app-protect-36+5.550.0-1.el9.ngx.x86_64.rpm_ | - -{{< /table >}} - -## F5 WAF for NGINX 5.9 - -Released _September 29th, 2025_. - -### New features - -- Added [Kubernetes operations improvements]({{< ref "/waf/install/kubernetes-plm" >}}) as early availability - -### Important notes - -- Renamed F5 NGINX App Protect WAF to F5 WAF for NGINX -- Aligned F5 WAF for NGINX versions - - Package and container artifacts now share the same version numbers - - Upgrade processes remain the same as earlier releases - - No breaking changes - -{{< call-out "important" >}} - -"_V4_" is now represented in the following pages or sections: - -- [Virtual machine or bare metal]({{< ref "/waf/install/virtual-environment.md">}}) -- Docker [Hybrid]({{< ref "/waf/install/docker.md#hybrid-configuration" >}}) and [Single container]({{< ref "/waf/install/docker.md#single-container-configuration" >}}) configuration - -"_V5_" is now represented in the following pages or sections: - -- [Kubernetes]({{< ref "/waf/install/kubernetes.md">}}) -- Docker [Multi-container]({{< ref "/waf/install/docker.md#multi-container-configuration" >}}) configuration - -{{< /call-out >}} - -- Restructured documentation - - Product name change - - Version alignment - - Grouped use cases into sections with single-purpose documents -- Upgrade Go compiler to 1.23.12 - -### Packages - -{{< table >}} - -| Distribution name | NGINX Open Source (5.9) | NGINX Plus (5.9) | NGINX Plus (5.9) | -| ------------------------ | ----------------------------------------------------------------- | -------------------------------------------------------------- |------------------ | -| Alpine 3.19 | _app-protect-module-oss-1.29.0+5.527.0-r1.apk_ | _app-protect-module-plus-35+5.527.0-r1.apk_ | _app-protect-35.5.527.0-r1.apk_ | -| Amazon Linux 2023 | _app-protect-module-oss-1.29.0+5.527.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-module-plus-35+5.527.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-35+5.527.0-1.amzn2023.ngx.x86_64.rpm_ | -| Debian 11 | _app-protect-module-oss_1.29.0+5.527.0-1\~bullseye_amd64.deb_ | _app-protect-module-plus_35+5.527.0-1\~bullseye_amd64.deb_ | _app-protect_35+5.527.0-1\~bullseye_amd64.deb_ | -| Debian 12 | _app-protect-module-oss_1.29.0+5.527.0-1\~bookworm_amd64.deb_ | _app-protect-module-plus_35+5.527.0-1\~bookworm_amd64.deb_ | _app-protect_35+5.527.0-1\~bookworm_amd64.deb_ | -| Oracle Linux 8.1 | _app-protect-module-oss-1.29.0+5.527.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-35+5.527.0-1.el8.ngx.x86_64.rpm_ | _app-protect-35+5.527.0-1.el8.ngx.x86_64.rpm_ | -| RHEL 8 and Rocky Linux 8 | _app-protect-module-oss-1.29.0+5.527.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-35+5.527.0-1.el8.ngx.x86_64.rpm_ | _app-protect-35+5.527.0-1.el8.ngx.x86_64.rpm_ | -| RHEL 9 and Rocky Linux 9 | _app-protect-module-oss-1.29.0+5.527.0-1.el9.ngx.x86_64.rpm_ | _app-protect-module-plus-35+5.527.0-1.el8.ngx.x86_64.rpm_ | _app-protect-35+5.527.0-1.el9.ngx.x86_64.rpm_ | -| Ubuntu 22.04 | _app-protect-module-oss_1.29.0+5.527.0-1\~jammy_amd64.deb_ | _app-protect-module-plus_35+5.527.0-1\~jammy_amd64.deb_ | _app-protect_35+5.527.0-1\~jammy_amd64.deb_ | -| Ubuntu 24.04 | _app-protect-module-oss_1.29.0+5.527.0-1\~noble_amd64.deb_ | _app-protect-module-plus_35+5.527.0-1\~noble_amd64.deb_ | _app-protect_35+5.527.0-1\~noble_amd64.deb_ | - -{{< /table >}} - -## F5 NGINX App Protect WAF 5.8 / 4.16 - -Released _August 13th, 2025_. - -### New features - -- Added support for NGINX Plus R35 - -### Packages - -{{< table >}} - -| Distribution name | NGINX Open Source (5.8) | NGINX Plus (5.8) | NGINX Plus (4.16) | -| ------------------------ | ----------------------------------------------------------------- | -------------------------------------------------------------- |------------------ | -| Alpine 3.19 | _app-protect-module-oss-1.29.0+5.498.0-r1.apk_ | _app-protect-module-plus-35+5.498.0-r1.apk_ | _app-protect-35.5.498.0-r1.apk_ | -| Amazon Linux 2023 | _app-protect-module-oss-1.29.0+5.498.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-module-plus-35+5.498.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-35+5.498.0-1.amzn2023.ngx.x86_64.rpm_ | -| Debian 11 | _app-protect-module-oss_1.29.0+5.498.0-1\~bullseye_amd64.deb_ | _app-protect-module-plus_35+5.498.0-1\~bullseye_amd64.deb_ | _app-protect_35+5.498.0-1\~bullseye_amd64.deb_ | -| Debian 12 | _app-protect-module-oss_1.29.0+5.498.0-1\~bookworm_amd64.deb_ | _app-protect-module-plus_35+5.498.0-1\~bookworm_amd64.deb_ | _app-protect_35+5.498.0-1\~bookworm_amd64.deb_ | -| Oracle Linux 8.1 | _app-protect-module-oss-1.29.0+5.498.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-35+5.498.0-1.el8.ngx.x86_64.rpm_ | _app-protect-35+5.498.0-1.el8.ngx.x86_64.rpm_ | -| Ubuntu 22.04 | _app-protect-module-oss_1.29.0+5.498.0-1\~jammy_amd64.deb_ | _app-protect-module-plus_35+5.498.0-1\~jammy_amd64.deb_ | _app-protect_35+5.498.0-1\~jammy_amd64.deb_ | -| Ubuntu 24.04 | _app-protect-module-oss_1.29.0+5.498.0-1\~noble_amd64.deb_ | _app-protect-module-plus_35+5.498.0-1\~noble_amd64.deb_ | _app-protect_35+5.498.0-1\~noble_amd64.deb_ | -| RHEL 8 and Rocky Linux 8 | _app-protect-module-oss-1.29.0+5.498.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-35+5.498.0-1.el8.ngx.x86_64.rpm_ | _app-protect-35+5.498.0-1.el8.ngx.x86_64.rpm_ | -| RHEL 9 and Rocky Linux 9 | _app-protect-module-oss-1.29.0+5.498.0-1.el9.ngx.x86_64.rpm_ | _app-protect-module-plus-35+5.498.0-1.el8.ngx.x86_64.rpm_ | _app-protect-35+5.498.0-1.el9.ngx.x86_64.rpm_ | - -{{< /table >}} - -## F5 NGINX App Protect WAF 5.7 / 4.15 - -Released _June 24th, 2025_. - -### New features - -- Added support for Rocky Linux 9 -- Added support for IP Intelligence -- Added support for Override rules for IP Address Lists - -### Important notes - -- Ubuntu 20.04 is no longer supported -- (12447) Upgrade libk5crypto3 package -- (12520) Upgrade Go compiler to 1.23.8 - -### Resolved issues - -- (12527) Remove CPAN - installed certs and source files -- (11112) Remove systemd/init.d leftovers in NAP WAF v5 pkgs -- (12400) Cookie attributes are not added to a TS cookie when there is more than one TS cookie -- (12498) Undefined behavior when using huge XFF -- (12731) Multiple clean_resp_reset internal error messages in logs when loading NAP - -### Packages - -{{< table >}} - -| Distribution name | NGINX Open Source (5.7) | NGINX Plus (5.7) | NGINX Plus (4.15) | -| ------------------------ | ----------------------------------------------------------------- | -------------------------------------------------------------- |----------------------------------------------------| -| Alpine 3.19 | _app-protect-module-oss-1.27.4+5.442.0-r1.apk_ | _app-protect-module-plus-34+5.442.0-r1.apk_ | _app-protect-34.5.442.0-r1.apk_ | -| Amazon Linux 2023 | _app-protect-module-oss-1.27.4+5.442.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.442.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-34+5.442.0-1.amzn2023.ngx.x86_64.rpm_ | -| Debian 11 | _app-protect-module-oss_1.27.4+5.442.0-1\~bullseye_amd64.deb_ | _app-protect-module-plus_34+5.442.0-1\~bullseye_amd64.deb_ | _app-protect_34+5.442.0-1\~bullseye_amd64.deb_ | -| Debian 12 | _app-protect-module-oss_1.27.4+5.442.0-1\~bookworm_amd64.deb_ | _app-protect-module-plus_34+5.442.0-1\~bookworm_amd64.deb_ | _app-protect_34+5.442.0-1\~bookworm_amd64.deb_ | -| Oracle Linux 8.1 | _app-protect-module-oss-1.27.4+5.442.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.442.0-1.el8.ngx.x86_64.rpm_ | _app-protect-34+5.442.0-1.el8.ngx.x86_64.rpm_ | -| Ubuntu 22.04 | _app-protect-module-oss_1.27.4+5.442.0-1\~jammy_amd64.deb_ | _app-protect-module-plus_34+5.442.0-1\~jammy_amd64.deb_ | _app-protect_34+5.442.0-1\~jammy_amd64.deb_ | -| Ubuntu 24.04 | _app-protect-module-oss_1.27.4+5.442.0-1\~noble_amd64.deb_ | _app-protect-module-plus_34+5.442.0-1\~noble_amd64.deb_ | _app-protect_34+5.442.0-1\~noble_amd64.deb_ | -| RHEL 8 and Rocky Linux 8 | _app-protect-module-oss-1.27.4+5.442.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.442.0-1.el8.ngx.x86_64.rpm_ | _app-protect-34+5.442.0-1.el8.ngx.x86_64.rpm_ | -| RHEL 9 and Rocky Linux 9 | _app-protect-module-oss-1.27.4+5.442.0-1.el9.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.442.0-1.el9.ngx.x86_64.rpm_ | _app-protect-34+5.442.0-1.el9.ngx.x86_64.rpm_ | - | - -{{< /table >}} - -## F5 NGINX App Protect WAF 5.6 / 4.14 - -Released _April 1st, 2025_. - -### New features - -- Added support for NGINX Plus R34 -- **5.6 Only:** You can now [deploy F5 WAF for NGINX 5+ using a Helm chart]({{< ref "/waf/install/kubernetes.md">}}) - -### Important notes - -- Alpine 3.17 is no longer supported - -### Resolved issues - -- Upgraded the Go compiler to 1.23.7 -- (12140) Changed the maximum memory of the XML processing engine to 8GB -- (12254) A modified YAML file referenced by a JSON policy file causes a reload error when running `nginx -t` -- (12296) "Violation Bad Unescape" is not enabled by default -- (12297) "Violation Encoding" is not enabled by default - -### Packages - -{{< table >}} - -| Distribution name | NGINX Open Source (5.6) | NGINX Plus (5.6) | NGINX Plus (4.14) | -| ------------------------ | ----------------------------------------------------------------- | -------------------------------------------------------------- |----------------------------------------------------| -| Alpine 3.19 | _app-protect-module-oss-1.27.4+5.342.0-r1.apk_ | _app-protect-module-plus-34+5.342.0-r1.apk_ | _app-protect-34.5.342.0-r1.apk_ | -| Amazon Linux 2023 | _app-protect-module-oss-1.27.4+5.342.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.342.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-34+5.342.0-1.amzn2023.ngx.x86_64.rpm_ | -| Debian 11 | _app-protect-module-oss_1.27.4+5.342.0-1\~bullseye_amd64.deb_ | _app-protect-module-plus_34+5.342.0-1\~bullseye_amd64.deb_ | _app-protect_34+5.342.0-1\~bullseye_amd64.deb_ | -| Debian 12 | _app-protect-module-oss_1.27.4+5.342.0-1\~bookworm_amd64.deb_ | _app-protect-module-plus_34+5.342.0-1\~bookworm_amd64.deb_ | _app-protect_34+5.342.0-1\~bookworm_amd64.deb_ | -| Oracle Linux 8.1 | _app-protect-module-oss-1.27.4+5.342.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.342.0-1.el8.ngx.x86_64.rpm_ | _app-protect-34+5.342.0-1.el8.ngx.x86_64.rpm_ | -| Ubuntu 20.04 | _app-protect-module-oss_1.27.4+5.342.0-1\~focal_amd64.deb_ | _app-protect-module-plus_34+5.342.0-1\~focal_amd64.deb_ | _app-protect_34+5.342.0-1\~focal_amd64.deb_ | -| Ubuntu 22.04 | _app-protect-module-oss_1.27.4+5.342.0-1\~jammy_amd64.deb_ | _app-protect-module-plus_34+5.342.0-1\~jammy_amd64.deb_ | _app-protect_34+5.342.0-1\~jammy_amd64.deb_ | -| Ubuntu 24.04 | _app-protect-module-oss_1.27.4+5.342.0-1\~noble_amd64.deb_ | _app-protect-module-plus_34+5.342.0-1\~noble_amd64.deb_ | _app-protect_34+5.342.0-1\~noble_amd64.deb_ | -| RHEL 8 and Rocky Linux 8 | _app-protect-module-oss-1.27.4+5.342.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.342.0-1.el8.ngx.x86_64.rpm_ | _app-protect-34+5.342.0-1.el8.ngx.x86_64.rpm_ | -| RHEL 9 | _app-protect-module-oss-1.27.4+5.342.0-1.el9.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.342.0-1.el9.ngx.x86_64.rpm_ | _app-protect-34+5.342.0-1.el9.ngx.x86_64.rpm_ | - -{{< /table >}} - -## F5 NGINX App Protect WAF 5.5 / 4.13 - -Released _January 30th, 2025_. - -### New features - -- Added support for Alpine 3.19 -- Added support for [Brute force attack preventions]({{< ref "/waf/policies/brute-force-attacks.md" >}}) -- **5.5 Only:** Enforcer can now upgrade without requiring policies to be recompiled -- **5.5 Only:** The standalone converter within the Compiler now supports [user-defined signatures]({{< ref "/waf/configure/compiler.md#user-defined-signatures" >}}). - -### Packages - -{{< table >}} - -| Distribution name | NGINX Open Source (5.5) | NGINX Plus (5.5) | NGINX Plus (4.13) | -| ------------------------ | ----------------------------------------------------------------- | -------------------------------------------------------------- |----------------------------------------------------| -| Alpine 3.17 | _app-protect-module-oss-1.27.4+5.210.0-r1.apk_ | _app-protect-module-plus-34+5.210.0-r1.apk_ | _app-protect-34.5.210.0-r1.apk_ | -| Alpine 3.19 | _app-protect-module-oss-1.27.4+5.210.0-r1.apk_ | _app-protect-module-plus-34+5.210.0-r1.apk_ | _app-protect-34.5.210.0-r1.apk_ | -| Amazon Linux 2023 | _app-protect-module-oss-1.27.4+5.210.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.210.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-34+5.210.0-1.amzn2023.ngx.x86_64.rpm_ | -| Debian 11 | _app-protect-module-oss_1.27.4+5.210.0-1\~bullseye_amd64.deb_ | _app-protect-module-plus_34+5.210.0-1\~bullseye_amd64.deb_ | _app-protect_34+5.210.0-1\~bullseye_amd64.deb_ | -| Debian 12 | _app-protect-module-oss_1.27.4+5.210.0-1\~bookworm_amd64.deb_ | _app-protect-module-plus_34+5.210.0-1\~bookworm_amd64.deb_ | _app-protect_34+5.210.0-1\~bookworm_amd64.deb_ | -| Oracle Linux 8.1 | _app-protect-module-oss-1.27.4+5.210.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.210.0-1.el8.ngx.x86_64.rpm_ | _app-protect-34+5.210.0-1.el8.ngx.x86_64.rpm_ | -| Ubuntu 20.04 | _app-protect-module-oss_1.27.4+5.210.0-1\~focal_amd64.deb_ | _app-protect-module-plus_34+5.210.0-1\~focal_amd64.deb_ | _app-protect_34+5.210.0-1\~focal_amd64.deb_ | -| Ubuntu 22.04 | _app-protect-module-oss_1.27.4+5.210.0-1\~jammy_amd64.deb_ | _app-protect-module-plus_34+5.210.0-1\~jammy_amd64.deb_ | _app-protect_34+5.210.0-1\~jammy_amd64.deb_ | -| Ubuntu 24.04 | _app-protect-module-oss_1.27.4+5.210.0-1\~noble_amd64.deb_ | _app-protect-module-plus_34+5.210.0-1\~noble_amd64.deb_ | _app-protect_34+5.210.0-1\~noble_amd64.deb_ | -| RHEL 8 and Rocky Linux 8 | _app-protect-module-oss-1.27.4+5.210.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.210.0-1.el8.ngx.x86_64.rpm_ | _app-protect-34+5.210.0-1.el8.ngx.x86_64.rpm_ | -| RHEL 9 | _app-protect-module-oss-1.27.4+5.210.0-1.el9.ngx.x86_64.rpm_ | _app-protect-module-plus-34+5.210.0-1.el9.ngx.x86_64.rpm_ | _app-protect-34+5.210.0-1.el9.ngx.x86_64.rpm_ | - -{{< /table >}} +| Alpine 3.22 | _app-protect-module-oss-1.29.3+5.575.0-r1.apk_ | _app-protect-module-plus-36+5.575.0-r1.apk_ | _app-protect-36.5.575.0-r1.apk_ | +| Amazon Linux 2023 | _app-protect-module-oss-1.29.3+5.575.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-module-plus-36+5.575.0-1.amzn2023.ngx.x86_64.rpm_ | _app-protect-36+5.575.0-1.amzn2023.ngx.x86_64.rpm_ | +| Debian 11 | _app-protect-module-oss_1.29.3+5.575.0-1\~bullseye_amd64.deb_ | _app-protect-module-plus_36+5.575.0--1\~bullseye_amd64.deb_ | _app-protect_36+5.575.0-1\~bullseye_amd64.deb_ | +| Debian 12 | _app-protect-module-oss_1.29.3+5.575.0-1\~bookworm_amd64.deb_ | _app-protect-module-plus_36+5.575.0--1\~bookworm_amd64.deb_ | _app-protect_36+5.575.0-1\~bookworm_amd64.deb_ | +| Oracle Linux 8.1 | _app-protect-module-oss-1.29.3+5.575.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-36+5.575.0-1.el8.ngx.x86_64.rpm_ | _app-protect-36+5.575.0-1.el8.ngx.x86_64.rpm_ | +| Ubuntu 22.04 | _app-protect-module-oss_1.29.3+5.575.0-1\~jammy_amd64.deb_ | _app-protect-module-plus_36+5.575.0--1\~jammy_amd64.deb_ | _app-protect_36+5.575.0-1\~jammy_amd64.deb_ | +| Ubuntu 24.04 | _app-protect-module-oss_1.29.3+5.575.0-1\~noble_amd64.deb_ | _app-protect-module-plus_36+5.575.0--1\~noble_amd64.deb_ | _app-protect_36+5.575.0-1\~noble_amd64.deb_ | +| RHEL 8 and Rocky Linux 8 | _app-protect-module-oss-1.29.3+5.575.0-1.el8.ngx.x86_64.rpm_ | _app-protect-module-plus-36+5.575.0-1.el8.ngx.x86_64.rpm_ | _app-protect-36+5.575.0-1.el8.ngx.x86_64.rpm_ | +| RHEL 9 and Rocky Linux 9 | _app-protect-module-oss-1.29.3+5.575.0-1.el9.ngx.x86_64.rpm_ | _app-protect-module-plus-36+5.575.0-1.el9.ngx.x86_64.rpm_ | _app-protect-36+5.575.0-1.el9.ngx.x86_64.rpm_ | + +{{< /table >}} \ No newline at end of file diff --git a/content/waf/configure/compiler.md b/content/waf/configure/compiler.md index b1b3035566..9aac72dbd3 100644 --- a/content/waf/configure/compiler.md +++ b/content/waf/configure/compiler.md @@ -16,8 +16,6 @@ The compiler is packaged as a Docker image and can executed using the Docker CLI If you are using a virtual machine/bare-metal installation, read the [Update F5 WAF for NGINX signatures]({{< ref "/waf/install/update-signatures.md" >}}) topic. -If you are using a Helm-based Kubernetes deployment, read the [Kubernetes operations improvements (Early access)]({{< ref "/waf/install/kubernetes-plm.md" >}}) topic. - {{< /call-out >}} One or more bundle files can be referenced in the NGINX configuration file, and you can configure global settings such as the cookie seed and user-defined signatures. diff --git a/content/waf/install/kubernetes-plm.md b/content/waf/install/kubernetes-plm.md index db5057f303..b23b6294ae 100644 --- a/content/waf/install/kubernetes-plm.md +++ b/content/waf/install/kubernetes-plm.md @@ -1,6 +1,7 @@ --- title: "Kubernetes operations improvements (Early access)" weight: 300 +draft: true toc: true nd-banner: enabled: true diff --git a/data/nap-waf/schema/policy.json b/data/nap-waf/schema/policy.json index b15ac481c6..7deaad0166 100644 --- a/data/nap-waf/schema/policy.json +++ b/data/nap-waf/schema/policy.json @@ -3717,7 +3717,7 @@ "oneOf" : [ { "items" : { - "description" : "Defines behavior when signatures found within a signature-set are detected in a request. Settings are culmulative, so if a signature is found in any set with block enabled, that signature will have block enabled.", + "description" : "Defines behavior when signatures found within a signature-set are detected in a request. Settings are cumulative, so if a signature is found in any set with block enabled, that signature will have block enabled.", "properties" : { "$action" : { "enum" : [