Forum Discussion
NimbostratusProactive Bot Defense blocks legal traffic
Dear All,
I have created an DDOS Profile with Proactive Bot Defense (Always) enabled. The problem is that the ASM blocks static content (css,js etc..) randomly. Using an irule for logging, the browser does not send the TSPD_101 cookie.
I've also enabled web scraping and CSRF.. I performed some tests without Web scraping and csrf but the problem still persist.
BIGIP Version: 12.1.2 HF2
Any ideas?
Thanks :)
5 Replies
Simon_BlakelyEmployee
Have you read: Proactive Bot Defense Using BIG-IP ASM
Is it a specific browser or client that is having a problem with the Javascript challenge?
smouzakisHello @S Blakely,
I have performed tests using Chrome, IE, Firefox and I am facing the same issue.
Best Regards,
SM
- Simon_Blakely
Do you have any irules/local traffic policies on the virtual that control the URI?
On v12, the Javascript challenge is delivered from a "fictive" URL (/TSPD/ or /TSbd/)
You need to ensure that these paths are passed through any irule/policy to be processed by ASM, and not blocked/redirected.
Can you record a session using HTTPWatch until the blocking occurs?
- smouzakis
@S Blakely, thank you for your reply.
Yes, I have both but not for these paths. The problem occurs randomly.
I will try to record a session.
- Eddie_Lau_16940
SM: Did you ever record a session or figure out the issue?
