Forum Discussion

Nimbostratus

Nov 19, 2014

Bruteforce mitigation on JSON parameters

Hi All, I would like to know the possibilities to protect a webserver,against bruteforce attacks, who uses JSON parameters. In the ASM, the default option is, to protect a loginpage. The webapp...

Employee

Nov 24, 2014

Hi Erwin, you should be able to configure protection against multiple requests from a single source by configuring a login page and then defining thresholds for it. I don't think you need to worry about JSON parameter complications for this. In ASM, go to Application Security>Anomaly Detection>Brute Force Attack Prevention, and then create a page that you want to protect. You can specify exactly how many attempts from the same client will be allowed.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Bruteforce mitigation on JSON parameters

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Not seeing the latest F5OS-A when running Journeys

Related Content

F5 Distributed Cloud L3-L7 DDoS Mitigation

Mitigating Log4j Vulnerability using F5 BIG-IP

Realtime DoS mitigation with VELOS BX520 Blade

Mitigating OWASP API Security Risk: Mass Assignment using F5 BIG-IP

DNS Tunnel Mitigation v2

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS