Bug ID 753358: Deprecated Fields in Bot Defense Request Log

Last Modified: Apr 29, 2023

Affected Product(s):
BIG-IP ASM(all modules)

Known Affected Versions:
14.1.0,,,,,, 14.1.2,,,,,,,,, 14.1.3,, 14.1.4,,,,,,, 14.1.5,,,,, 15.0.0, 15.0.1,,,,

Opened: Dec 17, 2018

Severity: 3-Major


Some fields in the Bot Defense request log have been supplanted by new ones that add more information reflecting new features. There are duplicated fields for Bot Defense request log. The previous fields are being kept for backward compatibility so that existing code reading the remote logs do not break. Their presence might introduce confusion as to their significance and use.


Redundant fields that may create confusion.


Using the Bot Defense remote logger.


You can safely ignore these fields and use the new ones.

Fix Information


Behavior Change

The following fields in the Bot Defense request remote log are deprecated, and their new replacement fields should be used instead: -- 'classification_reason': Currently always empty string. The classification is implied by the detected signatures and/or anomalies. -- 'request_status': Replaced by 'new_request_status' in conjunction with 'class' and 'actual_verification_action'. -- 'reason': Currently always empty string. The reason is now conveyed by: 'configured_mitigation_action_reason', 'actual_mitigation_action_reason' and 'browser_actual_verification_action_reason' -- 'action': Replaced by 'actual_verification_action' and 'actual_mitigation_action'. -- 'previous_action': Replaced by 'previous_initiated_action' and 'previous_initiated_action_status'. -- 'client_type': Replaced by 'class'. -- 'mobile_is_app': Replaced by 'class'.

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips