Barracuda WAF uses the Referer Spam protection capability to protect from referer bombing. Whenever a spammer bot makes repeated website requests using a fake referer URL, WAF creates a blacklist to filter the incoming traffic and blocks “spam referrer” attacks. The blacklist contain the fake URL entries with details, such as, the pattern name, pattern and the version of the pattern against which WAF provides protection.
When the Referer Spam is enabled, all the spam URLs listed in the View Spam URL List is prevented from entering into the application if present in the Referer header.
The BOT MITIGATION > Bot Spam Mitigation page allows you to edit a Referer Spam.
- Referer Spam Detection - When set to On, Referer Spam Detection is enabled. By default, the Referer Spam Detection field provides protection against the referer list specified in View Spam URL List.
- Custom Referer Bots -Specifies the custom referer spam types to be used to detect the spam.
- Exception Patterns - Specify the patterns to be allowed as exceptions to mitigate false positives even if this is a part of a referer spam.