--- title: Blocked connection reporting description: API Behavioral Security (ABS) Blocked Connection REST application programming interface (API) reports all connections that are blocked by API Security Enforcer (ASE). component: pingintelligence version: 5.2 page_id: pingintelligence:pingintelligence_reference_guide:pingintelligence_blocked_connection_reporting canonical_url: https://docs.pingidentity.com/pingintelligence/5.2/pingintelligence_reference_guide/pingintelligence_blocked_connection_reporting.html revdate: April 3, 2024 section_ids: blocked-connection-summary: Blocked connection summary blocked-connection-details: Blocked Connection Details --- # Blocked connection reporting API Behavioral Security (ABS) Blocked Connection REST application programming interface (API) *(tooltip: \
\

A specification of interactions available for building software to access an application or service.\

\
)* reports all connections that are blocked by API Security Enforcer (ASE). Two types of reports are provided: * Blocked Connection Summary Report * Blocked Connection Detail Report The blocked connections are reported for the following categories: * API routing * DDoS flow control * ABS detected attacks * Custom blacklist * Decoy attacks * ASE detected attacks Use the following ABS REST API for viewing the blocked connections report: ## Blocked connection summary URL: `:port/v4/abs/bc?earlier_date=<>T&later_date=<>T` The following is a snippet of blocked connection summary report: ```json { "company": "ping identity", "name": "api_blockedconnections", "description": " This report contains a summary of all API traffic blocked by ASE for the following types: api_not_found, host_header_not_found, backend_not_found, client_spike, server_spike, bytes_in_threshold, bytes_out_threshold, quota_threshold, customer_blacklist, abs_detected_attacks, ase_detected_attacks, decoy_detected_attacks", "earlier_date": "Thu Jan 18 13:00:00:000 2018", "later_date": "Thu Feb 22 18:00:00:000 2018", "api_name": "global", "total_blocked_connections": 21222, "api_not_found": 0, "host_header_not_found": 0, "backend_not_found": 3501, "client_spike": 237, "server_spike": 6179, "bytes_in_threshold": 5938, "bytes_out_threshold": 18, "quota_threshold": 0, "customer_blacklist": 0, "abs_detected_attacks": 4576, "ase_detected_attacks": 773, "decoy_detected_attacks": 0 ``` ## Blocked Connection Details URL: `:port/v4/abs/bc?later_date=<>T&earlier_date=<> T&details=true` The following is a snippet of blocked connection details report: ```json { "company": "ping identity", "name": "api_blockedconnections", "description": "This report contains details of all API traffic blocked by ASE for the following types: api_not_found, host_header_not_found, backend_not_found, client_spike, server_spike, bytes_in_threshold, bytes_out_threshold, quota_threshold, customer_blacklist, abs_detected_attacks, ase_detected_attacks, decoy_detected_attacks, "earlier_date": "Thu Jan 18 13:00:00:000 2018", "later_date": "Thu Feb 22 18:00:00:000 2018", "api_blocked_connections": [ { "category": "api_routing", "details": [ { "source": "192.168.11.161", "type": "backend_not_found", "destination_api": "/v2/pet/55" }, { "source": "192.168.11.161", "type": "backend_not_found", "destination_api": "/v2/store/inventory" } ] }, { "category": "ddos_flowcontrol", "details": [ { "source": "100.64.1.24", "type": "bytes_in_threshold", "destination_api": "/app/ws" }, { "source": "100.64.3.213", "type": "protocol_violation", "destination_api": "" } ] }, { "category": "abs_detected_attacks", "details": [ { "source": "100.64.38.180", "type": "ioc_abs_ip_port", "destination_api": "/atmapp/zipcode" }, { "source": "100.64.38.180", "type": "ioc_abs_ip_port", "destination_api": "/atmapp/zipcode" } ] }, { "category": "customer_blacklist", "details": [] }, { "category": "decoy_detected_attacks", "details": [] }, { "category": "ase_detected_attacks", "details": [ { "source": "100.64.8.252", "type": "protocol_violation", "destination_api": "" }, { "source": "100.64.36.93", "type": "protocol_violation", "destination_api": "" } ] }, ] } ] } ```