For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

ILIAS_g_183177's avatar
ILIAS_g_183177
Icon for Nimbostratus rankNimbostratus
Sep 20, 2017

ASM blocking mallware

Hello,   We would like to know if ASM can analyze the HTTP Header of a request and evaluate the following fields in order to identify potential unwanted traffic:   Referer X-Requested-With ...
ASM Advanced WAF
security
Stanislas_Piro2's avatar
Stanislas_Piro2
Icon for Cumulonimbus rankCumulonimbus
Sep 21, 2017

Hi,

 

With an irule, you can extract and manage both informations. but ASM doesn't use domain reputation and infected application database.

 

If you can provide both informations (static list) or an URL where BIGIP can download a list of domain and application to block, this can be done with an irule (and a scheduled icall script to download and fulfill datagroups of apps and domains)!