cancel
Showing results for 
Search instead for 
Did you mean: 
Graham_Alderso1
F5 Employee
F5 Employee

Learn how to use the F5 Advanced Web Application Firewall to easily protect your applications against bots. Bots can be used as tools for a variety of attacks such as DoS, credential stuffing and brute force, or web scraping.

See the entire AppSec Made Easy series.

Comments
Mark_Curole
Nimbostratus
Nimbostratus

I've been playing with Proactive Bot Defense and want to know how to deal with a particular situation. I am needing to allow certain bots that has a valid signature that is categorized as a crawler. Is there a way to get specific bots to work without configuring IP exceptions?

 

Graham_Alderso1
F5 Employee
F5 Employee

Mark,

 

I think you have two good options here:

 

  1. iRule - https://devcentral.f5.com/s/articles/proactive-bot-defense-bypass-by-bot-signature-1150

     

  2. If you set the category to report and the signature has a reverse DNS lookup, then it will bypass PBD (note that you need to setup a DNS resolver). If the current one doesn't have reverse DNS on the signature, you could disable the signature, create a custom signature that does have reverse DNS, create a custom category to put it in, and set that custom category to report.

     

_swo0sh_gt_3084
Historic F5 Account

Great job Graham!

 

Version history
Last update:
‎03-May-2018 09:48
Updated by:
Contributors