Bug ID 588405: BADOS - BIG-IP Self-protection during (D)DOS attack

Last Modified: Sep 13, 2023

Affected Product(s):
BIG-IP ASM(all modules)

Known Affected Versions:
12.1.0, 12.1.1

Fixed In:
13.0.0, 12.1.2

Opened: Apr 19, 2016

Severity: 3-Major


Problem: 100% accurate detection may not help to prevent an attack It's necessary to protect BIG-IP CPU utilization during attack - for BAD actors (in addition to shunlist) and for unknown IPs. This mechanism should allow bad actors detection and keep CPU utilization in reasonable limits.


Service impact due to BIG-IP CPU high utilization


High BIG-IP CPU utilization during (D)DOS attack


No workaround

Fix Information

Added additional CPU protection during a (D)DOS attack

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips