Block IP Addresses With Data Group And Log Requests On ASM Event Log
Published Feb 17, 2019
Version 1.0Was this article helpful?
It's missing this step: Security>>Application Security: Policy Building:Learning and Blocking Settings
search for Custom Violations section and enable Alarm and Block settings for the just created violation Illegal_IP_Address.
Tested on version 16.1.4.x
renaranj2024 is possible to create a new how-to using your version?
Use this procedure and add the two steps I wrote.
The Code works fine. Use you datagroup name and custom violation name.
Ok, I'll try to use it, the same code from the example, my concern is blocking everything, not just the Black_list IPs, but all sources.