Forum Discussion

Cirrocumulus

Oct 21, 2011

Bot Blocked Logs in ASM

Hello all. Big-ip LTM + ASM v9.4.8 The ASM module is blocking repeated googlebot requests due to "illegal HTTP status in response". This is fine and dandy. However, is there any wa...

app sec

BIG-IP Access Policy Manager (APM)

security

jwham20

Nimbostratus

Oct 21, 2011

@nathan

Got to love the bots! You can turn of the logging for that policy item by unchecking the alarm box in the policy blocking mask for "Illegal HTTP status in response"

Policy -> Blocking -> Settings

As for not logging only for specific status/user-agent pairs, in 9.X, not that I can think of. 10 introduces some new logging functions, but I can't think of a function out of the box that would do that. Maybe some fun with the new versions of the logging profiles in the asm.

Hope it helps!

Josh

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Bot Blocked Logs in ASM

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

Bot Management Strategy - Defense against malicious bots with F5 Distributed Cloud Bot Defense

Ridiculously Easy Bot Protection: How to Use BIG-IP APM to Streamline Bot Defense Implementation

Bot Defense for Mobile Apps in XC WAAP Part 1: The Bot Defense Mobile SDK

F5 Distributed Cloud Bot Defense Protecting AWS CloudFront Distributions

Blocking Bots: How Silverline Shape Defense Works

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS