Bug ID 555931: Brute Force Attack does not start from new entities

Last Modified: Apr 10, 2019

Bug Tracker

Affected Product:  See more info
BIG-IP ASM(all modules)

Known Affected Versions:
12.0.0, 12.0.0 HF1, 12.0.0 HF2, 12.0.0 HF3, 12.0.0 HF4

Fixed In:
12.1.0

Opened: Nov 03, 2015
Severity: 3-Major

Symptoms

An expected brute force attack does not start although the traffic pattern from an IP or to URL seems to be matching the configuration to start an attack.

Impact

A brute force attack is not detected and not prevented.

Conditions

Brute force attack is configured. Failed logins are happening that matches the configuration. The entity (IP/URL) is generating traffic less than 2 minutes.

Workaround

None

Fix Information

Brute force attacks on entities that generate traffic for less than 5 minutes detected and mitigated.

Behavior Change