Forum Discussion

Nimbostratus

Sep 20, 2017

ASM blocking mallware

Hello, We would like to know if ASM can analyze the HTTP Header of a request and evaluate the following fields in order to identify potential unwanted traffic: Referer X-Requested-With ...

ASM Advanced WAF

security

stan_piron

Cumulonimbus

Sep 21, 2017

Hi,

With an irule, you can extract and manage both informations. but ASM doesn't use domain reputation and infected application database.

If you can provide both informations (static list) or an URL where BIGIP can download a list of domain and application to block, this can be done with an irule (and a scheduled icall script to download and fulfill datagroups of apps and domains)!

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

ASM blocking mallware

Jeff - May 2026 Featured F5er

AppWorld Berlin 2026 – iRules Contest Winning Results

One Quick Step to Make your website AI-Agent/MCP Ready with an iRule

Recent Discussions

APM URL encoding Hardening?

Trial License for F5 virtual edition in eve-ng

certitcate error

about create wide ip,

Dynamic import of data groups

Related Content

Block IP after a number of ASM Blocks

Logging/Blocking possible prompt injection

Can't upload msg file - ASM block

ASM blocked page redirect

Service Extensions with SSL Orchestrator: Advanced Blocking Pages

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS