Forum Discussion

Icon for Nimbostratus rank

Nimbostratus

Dec 04, 2014

APM logon page

Hi,

Does anyone have a guide on how to use ASM brute force protection in order to protect the APM logon page ? I've seen some ideas on devcentral about using vs targeting vs or irule that will redirect traffic from the vs with asm to the vs with apm but nothing I've tried seem to work. Just redirection I'm quite sure it won't work. I know there are possibilities to protect APM from brute force attacks by using irules but it would be nicer to use the built in functions of ASM.

Regards

ASM Advanced WAF

BIG-IP Access Policy Manager (APM)

1 Reply

Andrew_Husking
Cirrus
Dec 10, 2014
There is a few articles on devcentral about using APM to do the bruteforce protection by storing an account lockout variable in the APM DB.

Here's part 1 of the article. https://devcentral.f5.com/articles/preventing-brute-force-password-guessing-attacks-with-apmpart-1

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

Bram - January 2026 Featured Member

DevCentral News

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

Community Articles

application delivery

container ingress services

F5 Architecture Track Sessions - AppWorld 2026

DevCentral News

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5