For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

mherman31_24878's avatar
mherman31_24878
Icon for Nimbostratus rankNimbostratus
Dec 01, 2016

AMS brute force protection Dynamic

Hi All,   I have problem with configuring AMS brute force protection on logon page on 11.6.0 HF5   I'm configuring clear ASM with checked "block" in "Brute Force: Maximum login attempts are exc...
application delivery
ASM Advanced WAF
BIG-IP
security
Mikhail_Fedorov's avatar
Mikhail_Fedorov
Historic F5 Account
Dec 09, 2016

Hi mherman31, Did you enable BF via Default profile or via profile for certain login URL? If "Default" do not forget to set "Brute Force Protection" checkbox explicitly.

 

Dynamic BF needs a bit time to detect attack and apply mitigation 10 requests may be not enough. So please continue sending failed login attempts a bit longer with RPS>3 to let Dyn BF detect attack and mitigate it.