Bug ID 608826: Greylist (bad actors list) is not cleaned when attack ends

Last Modified: Sep 13, 2023

Affected Product(s):
BIG-IP ASM(all modules)

Known Affected Versions:

Fixed In:
13.0.0, 12.1.2

Opened: Aug 03, 2016

Severity: 4-Minor


When attack ends the greylist (detected bad actors) remains till the timeout expiration.


If new attack will start sooner than greylist expiration time, greylist member will be mitigated even if they are not related to the current attack.


Detected bad actors and attack end.


It it's necessary it's possible to clear greylist manually using ipidr utility.

Fix Information

Clear the greylist upon attack end.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips