Bug ID 937269: IP address exception configuration in Centralized Policy Builder

Last Modified: Sep 13, 2023

Affected Product(s):
BIG-IQ Web App Security (ASM)(all modules)

Known Affected Versions:,

Fixed In:

Opened: Aug 17, 2020

Severity: 3-Major


The Centralized Policy Builder does not behave in accordance with the IP Exception (IP Address List in configuration). Whether an IP is set to be ignored (in learning suggestion) or trusted by the policy builder, it is treated like any IP address.


If the IP address was set to be 'Ignored In Learning Suggestion', it will not be ignored and would impact learning. If the IP address was set as 'Policy Builder Trusted IP', it will not be considered trusted by the Centralized Policy Builder.


When you configure an IP address as ignored or trusted by the policy builder in IP Address List and traffic can be learned from is sent for the IP address.



Fix Information

Centralized Policy Builder now ignores or trusts IP Addresses correctly according to the Centralized Policy Builder's configuration.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips