Forum Discussion

Cirrostratus

Feb 21, 2024

About shun_list

Hello,

I've been learning shun_list lately.
I checked out an article presenting relevant information.

https://techdocs.f5.com/en-us/bigip-17-0-0/big-ip-asm-implementations/using-shun-with-layer-7-dos.html#GUID-11B38E77-A76A-48CF-9C82-C0C0E3BF0B7B

It seems that only defenses against DoS will generate this list...

I would like to ask if there is a way to configure it to be generated when any attack is encountered?
(ex. When an attacker sends a SQL Injection attack, F5 detects it and blocks it and adds the source IP to the shun_list, blocking any behavior for 5 minutes.)

Any help is appreciate.

application delivery

No RepliesBe the first to reply

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)