Last Modified: Feb 14, 2024
Affected Product(s):
BIG-IP AFM
Fixed In:
16.1.4
Opened: Jan 06, 2023 Severity: 3-Major
Trying with too many valid domains and not all these domains have entries created in the NXDOMAIN table when they are trying to do learning.
We will not be able to honor the legitimate DNS A query when we have an NXDOMAIN attack detected.
The NXDOMAIN vector is enabled be it at the device level, virtual server level, or at both levels.
None
None