ASM DOS Protection heavy URLs

Question

Hi,&nbsp;
I wanted to have a simple/praticable explantation of the new option of the DoS profile : heavy URLs.&nbsp;
I read the official documentation and some articles and Q/A in devcentral but I just want to know if my understanding is correct :  For the listed heavy URLs, ASM will not apply the same thresholds as for other URLs ? Will these Thresholds be bigger or smaller ? some examples will be helpfull.&nbsp;
Thanks,&nbsp;

pedro_haoa · Answer

Hi,&nbsp;
Heavy URL protection specifies, when enabled (by default), that whenever an attack is detected the system protects the heavy URLs using the URL-based methods that you enabled in the Prevention Policy area (sending a JavaScript challenge to each suspicious URLs address and waiting for a response or the system drops transactions for suspicious URLs). If no URL-based methods are enabled, the system only reports attacks.&nbsp;

mobo_139370 · Answer

Thanks Pedro !&nbsp;

Forum Discussion

ASM DOS Protection heavy URLs

2 Replies

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

SSL cipher

iApps with load ucs Platform-migrate on newer hardware

Raise your hand if you'll be at AppWorld 2026

Using Terraform to update / modify an existing iRule

getting compiling error when enabling Nginx App_potect

Related Content

L7 DoS Protection with NGINX App Protect DoS

Runtime API Security: From Visibility to Enforced Protection

Heavy URL Protection

F5 API Security: Discovery and Protection

Protecting gRPC based APIs with NGINX App Protect

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS