Bug ID 539687: No logs for Proactive Bot Defense drops.

Last Modified: Nov 07, 2022

Affected Product(s):
BIG-IP ASM(all modules)

Known Affected Versions:
11.6.0, 11.6.0 HF1, 11.6.0 HF2, 11.6.0 HF3, 11.6.0 HF4, 11.6.0 HF5, 11.6.0 HF6, 11.6.0 HF7, 11.6.0 HF8, 11.6.1, 11.6.1 HF1, 11.6.1 HF2, 11.6.2, 11.6.2 HF1, 11.6.3, 11.6.3.1, 11.6.3.2, 11.6.3.3, 11.6.3.4, 11.6.4, 11.6.5, 11.6.5.1, 11.6.5.2, 11.6.5.3, 12.0.0, 12.0.0 HF1, 12.0.0 HF2, 12.0.0 HF3, 12.0.0 HF4

Fixed In:
12.1.0

Opened: Aug 13, 2015

Severity: 3-Major

Symptoms

A RST happens upon a request. There are no loggings or indication regarding this reset.

Impact

A connection terminates. The logging absence causes confusion.

Conditions

The VS has application dos attached with the proactive bot defense turned on.

Workaround

N/A

Fix Information

We added the internal parameter, proactive_defense_log_dropped_requests, that when enabled, logs the drops from the proactive bot defense into the tmm log.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips