Forum Discussion
Nikoolayy1
Sep 06, 2024MVP
The malicious IP means that this ip has done more than 10 violations.
Malicious Source IP Addresses (f5.com)
You can make and schedule ASM/AWAF default or custom report and send it by email:
You can see also session tracking to block ip addresses that generate too many violations and then configure the report for this violation or look into your SIEM for the violation:
Preventing Session Hijacking and Tracking User Sessions (f5.com)