For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

redheadontherun's avatar
redheadontherun
Icon for Nimbostratus rankNimbostratus
Jul 27, 2016

Block Source IP using a blocklist hosted on a webserver

Currently we utilize a web server to host a blocklist that some of our other security devices use to block IP addresses. It allows us to maintain 1 list for all devices. Can the F5 ASM or LTM utilize...
ASM Advanced WAF
BIG-IP
ifiles
iRules
LTM
security
Yann_Desmarest_'s avatar
Yann_Desmarest_
Icon for Nacreous rankNacreous
Jul 27, 2016

Hi,

 

this list can be uploaded as an ifile. You can also do a lookup using sideband connections in irules

 

Yann_Desmarest_'s avatar
Yann_Desmarest_
Icon for Nacreous rankNacreous
Jul 27, 2016

You can create an ifile using the following command : 

tmsh create sys file ifile blacklist source-path http://hostname.com/uri

and then update it using the following command : 

tmsh modify sys file ifile blacklist source-path http://hostname.com/uri

The filesize for a single iFile was raised to 32Mb in 12.1.0. Prior versions limited the size to 4Mb.