Last Modified: Apr 28, 2025
Affected Product(s):
BIG-IQ Web App Security (ASM)
Known Affected Versions:
7.0.0.1, 7.0.0.2
Fixed In:
7.1.0.1
Opened: Aug 17, 2020 Severity: 3-Major
The Centralized Policy Builder does not behave in accordance with the IP Exception (IP Address List in configuration). Whether an IP is set to be ignored (in learning suggestion) or trusted by the policy builder, it is treated like any IP address.
If the IP address was set to be 'Ignored In Learning Suggestion', it will not be ignored and would impact learning. If the IP address was set as 'Policy Builder Trusted IP', it will not be considered trusted by the Centralized Policy Builder.
When you configure an IP address as ignored or trusted by the policy builder in IP Address List and traffic can be learned from is sent for the IP address.
None
Centralized Policy Builder now ignores or trusts IP Addresses correctly according to the Centralized Policy Builder's configuration.