Forum Discussion

Nimbostratus

May 26, 2022

ASM Policy to prevent backend server fingerprinting

We recently moved a legacy Windows web server behind an ASM. The server can't be upgraded for various reasons. We are not yet ready to deploy a full security policy in blocking mode, but we would at ...

security

ragunath154

Cirrostratus

apart from WAF policy i would recomend to attach the BOT profile, which includes scanners database to block.

ip intelligence too have database of scanner ip's which you can block..

Nikoolayy1

MVP

May 29, 2022

Also the F5 ASM by default is removing by default the server response header which is nice:

https://support.f5.com/csp/article/K6534

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

ASM Policy to prevent backend server fingerprinting

Recent Discussions

self-directed requests fail because of no certificate

Decode ObjectSID from Base64-encode string

iRule - Url rewrite and header replace and pool selection not working

ip x-forwarding

F5 ASM API-Protection Policy

Related Content

Fingerprinting TLS Clients with JA4 on F5 BIG-IP

Guarding Large Language Models: Advanced Approaches to Preventing Model Theft

Howto enable BIG-IP ASM client fingerprinting

Use TLS Fingerprinting as a First Level of Defense in F5 Distributed Cloud

Operationlizing Online Fraud Detection, Prevention, and Response

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS