Forum Discussion

Cirrus

Jul 25, 2022

F5 ASM/AWAF Bot Defense Logging

Hello, short question, in a F5 ASM/AWAF under Secureity -> Event Logs -> Bot Defense -> Bot Requests, I see a lot of requests from my google loadbalancer which is in from of the F5. Ther is the requ...

event

logging

eLeCtRoN

Cirrus

Jul 26, 2022

Hi Josh,

thank you for your response, I explained I have in front google LBs in a specific range, I did already that range on the whitelist at the bot defense profile but I see it at the described log location always it is not a log exclusion list, mitigation action is not possible because I want to see in the log mitigation action but just not from a specific range otherwise I have to see whats going on, the google LBs triggering so much requests in some case it is heavy to analyses the log because it is to much rubbish inside !

JoshBecigneul

MVP

Jul 26, 2022

Another option could be to create an iRule to match the criteria the Google LB uses and then trigger a the BOTDEFENSE::disable command https://clouddocs.f5.com/api/irules/BOTDEFENSE__disable.html

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)