ASM Application DDOS Control

Question

what type of DDOS controls are you seeing&nbsp;

ppp2016_241036 · Answer

What type of DDOS controls that ASM can offer? Is it application DDOS attack? Does anyone has experience and understand how it works internally? How does ASM determine if the request is from human or botnet? Thanks!!

samstep · Answer

Yes, it is the application DDoS attacks and ASM uses multiple ways of protection.&nbsp;
ASM determines if request is from humans by injecting a special JavaScript snippet into the pages you want to protect. This JavaScript detects things like mouse movements,page scrolls, key presses as well the speed of navigation between pages.&nbsp;
ASM can also send a CAPTCHA challenge to tell a human and a bot apart.&nbsp;
You can find the detailed answers to your questions in the F5 ASM manual here:&nbsp;
https://support.f5.com/kb/en-us/products/big-ip_asm/manuals/product/asm-implementations-11-6-0/1.html?sr=51704887&nbsp;
Hope this helps,&nbsp;
Sam&nbsp;

Forum Discussion

ASM Application DDOS Control

2 Replies

Recent Discussions

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

F5 Access Guard Deprecated: ZTA APM

F5 loadbalancer not working

Pricing when used with aws waf

F5 terminal - help to run commands - disk space full

Related Content

Distributed caching of authentication requests with NGINX Ingress Controller

What is an Application Delivery Controller - Part I

DDoS Attack Trends for 2021

ExternalName Service and Authentication Subrequests with NGINX Ingress Controller

Application Programming Interface (API) Authentication types simplified