Forum Discussion

Cirrus

Mar 12, 2023

Block requests from web browser and only allow from clients application in ASM

Dear Community, I have a requirment to allow email application traffic initialated from email clinets i.e outlook, boxer only and block all traffic initiated from web browsers. Please inform how we ...

MVP

Mar 14, 2023

I agree that blocking User-Agent is useless but F5 Bot signatures also check header order and if there are missing HTTP headers and maybe this feature in the Bot profile "Browser Access(BIG-IP 15.x and later)" set to "Block" you can test https://my.f5.com/manage/s/article/K42323285

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Block requests from web browser and only allow from clients application in ASM

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Big-IP LTM integration with Big-IP DNS in Azure

Cannot ping external interface

HA Failover between two Datacenters

What does session_id = 0 means in ASM session tracking?

Extend capacity of the blade on Velos

Related Content

Introducing the F5 Application Study Tool (AST)

System Prerequisites for Deploying the Application Study Tool

Application Study Tool: Make Grafana Listen on HTTPS

Mitigating OWASP Web Application Risk: Server Side Request Forgery (SSRF) using F5 BIG-IP

Application Request Parsing

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS