Last Modified: Sep 13, 2023
Affected Product(s):
BIG-IP AFM
Known Affected Versions:
12.1.0 HF1, 12.1.0 HF2, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2
Fixed In:
12.0.0
Opened: Mar 09, 2015 Severity: 2-Critical
A new sys db variable dos.ipv6endpoint.prefix is introduced to support network based sweep/flood detection.
Previously only single host IP addresses are subject to sweep/flood detection. With the new db variable, network addresses can also be detected.
When AFM is enabled and sweep/flood vector is enabled.
None
The prefix can only be applied to IPv6 addresses.