Forum Discussion

Nimbostratus

May 26, 2022

ASM Policy to prevent backend server fingerprinting

We recently moved a legacy Windows web server behind an ASM. The server can't be upgraded for various reasons. We are not yet ready to deploy a full security policy in blocking mode, but we would at ...

security

ragunath154

Cirrostratus

May 26, 2022

apart from WAF policy i would recomend to attach the BOT profile, which includes scanners database to block.

ip intelligence too have database of scanner ip's which you can block..

Nikoolayy1

MVP

May 29, 2022

Also the F5 ASM by default is removing by default the server response header which is nice:

https://support.f5.com/csp/article/K6534

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

ASM Policy to prevent backend server fingerprinting

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Managing iRules configuration

CPU load when Prometheus is scraping metrics from F5 BIG-IP LTM

[ASM] - How to disable the SQL injection attack signatures

Illigal Parameter addition as custom signature set wanted to Unblock

[ASM] : "Request length exceeds defined buffer size " - How to increase the limit ?

Related Content

Fingerprinting TLS Clients with JA4 on F5 BIG-IP

TLS Fingerprinting - a method for identifying a TLS client without decrypting

Use TLS Fingerprinting as a First Level of Defense in F5 Distributed Cloud

Operationlizing Online Fraud Detection, Prevention, and Response

TLS Fingerprinting to profile SSL/TLS clients without decryption

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS