Forum Discussion

Cirrus

Nov 09, 2016

ASM / DoS Trigger Irule 11.5.4

Code level 11.5.4 Concerning ASM policies and DoS Profiles. Let me ask about Dos Profiles first. If you select the check box to "Trigger Irule" and let's say you create this irule:

when IN_DOSL7_ATTACK { log local0. "Attacker IP: $DOSL7_ATTACKER_IP" log local0. "Mitigation: $DOSL7_MITIGATION" }

This may be a stupid question but where do you put this irule? do you put this irule on the Virtual Server that you have applied the Dos Profile?

ASM Advanced WAF

security

1 Reply

boneyard
MVP
Nov 09, 2016
yes you attach it to the virtual server, see also

https://devcentral.f5.com/questions/dosl7profile-return-string-dosl7profile-49014

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 Architecture Track Sessions - AppWorld 2026

DevCentral News

announcement

Appworld2026

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

ASM / DoS Trigger Irule 11.5.4

1 Reply

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

UCS Encryption Question

Unblock Request WAF

VIP is not responding on SYN after enabling other modules like ASM, APM and AFM.

VIP in https that redirect to another vip in https

BIG-IP VE: 40G Throughput from 4x10G physical NICs

Related Content

iCall Triggers - Invalidating Cache from iRules

Irule Trigger two times

Trigger js challenge/Captcha for ip reputation/ip intelligence categories

ASM_REQUEST_BLOCKING not being triggered in iRule

Leveraging Ansible Rulebooks for Streamlined Event Triggers: Advantages and Benefits

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS