Forum Discussion

Cirrus

Dec 11, 2021

CVE-2021-44228 irule mitigation?

Hello there, Is there any iRule mitigation for the CVE-2021-44228? In support askf5 there is a mitigation using ASM but if I don't have it yet. Could I use an iRule? Regards, Daniel

Nimbostratus

Dec 13, 2021

I tried implementing the iRule linked from the AskF5 solution article, but as written it causes my site(s) to throw an HTTP 400 "Bad Request" error.

Anyone else see that behavior? Ideas?

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 Architecture Track Sessions - AppWorld 2026

DevCentral News

announcement

Appworld2026

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

CVE-2021-44228 irule mitigation?

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

SSL Bridging and FQDN rewrite Policy

AS3 declaration to set cookie to preferred

Cisco TACACS+ Config on ISE LTM Pair

Illegal Metacharacter in Parameter Name in Json Data

Checking for X-Forwarded-For against an Address Data-Group

Related Content

Apache Log4j2 (CVE-2021-44228) mitigation iApp

Mitigating log4j (CVE-2021-44228) with AFM Protocol Inspection Custom Signatures

DevCentral Connects: Log4j CVE-2021-44228

Mitigating Log4j Vulnerability using F5 BIG-IP

iRule to assist with CVE-2022-22965 mitigation

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS