Forum Discussion

Nimbostratus

Sep 29, 2017

Proactive Bot Defense blocks legal traffic

Dear All, I have created an DDOS Profile with Proactive Bot Defense (Always) enabled. The problem is that the ASM blocks static content (css,js etc..) randomly. Using an irule for logging, the ...

ASM Advanced WAF

security

Simon_Blakely

Employee

Oct 02, 2017

Do you have any irules/local traffic policies on the virtual that control the URI?

On v12, the Javascript challenge is delivered from a "fictive" URL (/TSPD/ or /TSbd/)

You need to ensure that these paths are passed through any irule/policy to be processed by ASM, and not blocked/redirected.

Can you record a session using HTTPWatch until the blocking occurs?

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 Architecture Track Sessions - AppWorld 2026

DevCentral News

announcement

Appworld2026

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Proactive Bot Defense blocks legal traffic

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

Cisco TACACS+ Config on ISE LTM Pair

Illegal Metacharacter in Parameter Name in Json Data

AS3 declaration to set cookie to preferred

SSL Bridging and FQDN rewrite Policy

Checking for X-Forwarded-For against an Address Data-Group

Related Content

Proactive Bot Defense Using BIG-IP ASM

AppSec Made Easy: Proactive Bot Defense

Proactive Bot Defense Bypass by Bot Signature

Bot Management Strategy - Defense against malicious bots with F5 Distributed Cloud Bot Defense

Active Cyber Defense - background and timeline

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS