Last Modified: Apr 17, 2024
Affected Product(s):
BIG-IP ASM
Known Affected Versions:
15.1.5, 15.1.5.1, 15.1.6, 15.1.6.1, 15.1.7, 15.1.8, 15.1.8.1, 15.1.8.2, 15.1.9, 15.1.9.1, 15.1.10, 15.1.10.2, 15.1.10.3, 15.1.10.4
Opened: Oct 20, 2020 Severity: 4-Minor
When the first DNS resolver is invalid, Bot Defense is unable to verify trusted bots, and is classifying them as malicious bots.
Bot Defense wrongly classifies valid search engines as malicious bots (and might block them if enforcement is enabled).
-- First DNS resolver in the list is invalid. -- Bot Defense profile is attached to a virtual server. -- Request from a search engine arrives.
Fix the first DNS resolver in the list. It's possible that the first DNS resolver is the built in DNS resolver "f5-aws-dns".
None