ASM Policy to prevent backend server fingerprinting

Question

We recently moved a legacy Windows web server behind an ASM. The server can't be upgraded for various reasons. We are not yet ready to deploy a full security policy in blocking mode, but we would at least like to prevent Shodan and other scanners from fingerprinting the backend server (e.g., determining OS version). How can we accomplish this?
Thanks.

ragunath154 · Answer

apart from WAF policy i would recomend to attach the BOT profile, which includes scanners database to block.ip intelligence too have database of scanner ip's which you can block..

nikoolayy1 · Answer

Also the F5 ASM by default is removing by default the server response header which is nice:
&nbsp;
https://support.f5.com/csp/article/K6534

Forum Discussion

ASM Policy to prevent backend server fingerprinting

2 Replies

Recent Discussions

Advise on setting up IRULE

Chrome V 124+ on MacOS - Virtual Server Access Issue

Port Group on F5OS network setting

F5Access | MacOS Sonoma

Rewrite uri translation not working

Related Content

Fingerprinting TLS Clients with JA4 on F5 BIG-IP

Use TLS Fingerprinting as a First Level of Defense in F5 Distributed Cloud

Guarding Large Language Models: Advanced Approaches to Preventing Model Theft

Howto enable BIG-IP ASM client fingerprinting

Operationlizing Online Fraud Detection, Prevention, and Response