Forum Discussion

Nimbostratus

Jun 04, 2015

ASM login url validation header name and value (BruteForce)

Hi Team, We are trying to configure bruteforce attack detection, but unable to understand how to configure login page url validation header name and value. we would like to validate based on loc...

Cirrocumulus

Jun 05, 2015

I've tested this (very crudely) and just entered in:

Connection Keep-Alive

No quotes, or colons and a space between the header and value.

This worked for me.

In your case it might be

Location https://xyz.com/abc

I'd checked the output of curl, or httpfox to confirm the Location header/value - as I imagine you have.

Hope this helps,

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

ASM login url validation header name and value (BruteForce)

Recent Discussions

INFORM: Entrust CA will be untrusted in Chrome after Oct 31, 2024

Can BIG-IP DNS recursion only my domain?

CPU data, control and analytics plane utilization

Can import iSeries 4000 config (OS ver 1.3.x) to rSeries 5000 (f5os-a 1.5.2)?

Datagroup with address and value

Related Content

POC: Validate JWT with iRule

Host Header Validation

(HTTP) Redirection via Arbitrary Host Header

Redirect Location header validator

Implementing SSL Orchestrator - Validation & Troubleshooting

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS