solaikumar_1217
Feb 11, 2016Nimbostratus
DOS protection in F5
Dear All,
Can anyone tell me the calculation behind ASM DOS protection .
Does the DOS policy learns some baselines during the ERP period based on the calculation? Please guide.
I have kept the DOS policy in block mode and it blocks even when the connection count is within 10 from individual IP's
The default configuration values in F5 DOS policy are
IP detection criteria
TPS increased by - 500 ; TPS reached - 200 ; Minimum TPS Threshold for detection - 40 .
Prevention policy
Client side Integrity defense
Source IP-Based Geolocation-Based, URL-Based, Site-wide.