Forum Discussion

Icon for Altostratus rank

Altostratus

Feb 04, 2020

Source IP logging for AFM DDoS attacks

Hello everyone. I'm configuring AFM DDoS Device Protection and using local-db-publisher for logging. Looking at the events generated when AFM detects an attack, I can only see the destination...

Simon_Blakely
Feb 04, 2020
The answer is in the name - DDoS Device Protection

The identified attacks are from multiple distributed source IPs, all targeted at a Destination IP.
Because of the distributed nature of the attack, the large number of Source IPs are considered not relevant, and so are not logged.

Icon for Employee rank

Employee

Feb 04, 2020

The answer is in the name - DDoS Device Protection

The identified attacks are from multiple distributed source IPs, all targeted at a Destination IP.

Because of the distributed nature of the attack, the large number of Source IPs are considered not relevant, and so are not logged.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming