ASM | Reporting - Behaviourial DoS

Question

HI All,&nbsp;Is their an option to export the report based on Attack-ID detected &amp; mitigated by the B-DoS solution with timestamp of the attack?currenly was only sucessful to export the reports for last day, week, month - this is not very useful as only the Attack ID's are mentioned without any time stamps&nbsp;The required info is availble on the dashboard but the ability to export is not present.&nbsp;Any Ideas on how to achieve this?&nbsp;Regards !!

erik_novak · Answer

Yes, you can create a DoS logging profile and send the data via syslog to a remote logging destination. That should give you what you're after.

amol_amberkar · Answer

Thanks Erik. &nbsp;But that way there is a dependency on the SIEM or the remote logging solution. &nbsp;Can we not do it via our UI? Or if we want to schedule a report with these parameters? &nbsp;Asking this as we do have an option to export just that the timestamp is missing and the report then doesn’t make sense. &nbsp;Do you think we need a feature enhancement request for this?&nbsp;Regards

erik_novak · Answer

Unfortunately not through the UI. Feature enhancement request is probably the way to go.

Forum Discussion

ASM | Reporting - Behaviourial DoS

3 Replies

Recent Discussions

Client certificate Authentication - open multiple tabs

google autenticator broken barcode

Chrome V 124+ on MacOS - Virtual Server Access Issue

vulnerabilities (CVE-2020-36363), CVE-2016-0736,CVE-2019-6593-FOR VERSION BIGIP LTM-16.1.4

Port Group on F5OS network setting

Related Content

Re: BigIP Report

BigIP Report Old

ASM Policy Report

Generating irule logs, emails and reports for Shadow API Endpoints on the F5 BIG-IP AWAF/ASM device

Get started with F5 Distributed Cloud WAAP Scheduled Reports