Dear all, Can you give me any sources for, how can I prevent/mitigate these type of Dos attacks with F5-ASM Dos Profile? HTTP floodHTTPS floodDynamic HTTP floodBrobot attackSlowLorisSSL (re)negotiationTHC-SSL attack Thanks,

How did you build your ASM profile? If you are using RDP almost all the attack signatures are assigned and your app will be moderately protected.

Oh sorry so you create a DOS profile and modify the parameters. Are you asking where these parameters are?

For slowloris Max_slow_transactions and slow_transactions_timeout.(TPS latency based) HTTP flood,HTTPS flood,Dynamic HTTP flood - TPS based Dos The rest of them will be under TPS layer7 parameters. Does this help?

Forum Discussion

gh0st_325958

Nimbostratus

May 09, 2018

Dos Attacks, F5-ASM Dos Profile

Dear all,

Can you give me any sources for, how can I prevent/mitigate these type of Dos attacks with F5-ASM Dos Profile?

HTTP flood
HTTPS flood
Dynamic HTTP flood
Brobot attack
SlowLoris
SSL (re)negotiation
THC-SSL attack

Thanks,

ASM Advanced WAF

security

3 Replies

Domai
Altostratus
May 09, 2018
How did you build your ASM profile? If you are using RDP almost all the attack signatures are assigned and your app will be moderately protected.
Domai
Altostratus
May 09, 2018
Oh sorry so you create a DOS profile and modify the parameters. Are you asking where these parameters are?
Domai
Altostratus
May 09, 2018
For slowloris Max_slow_transactions and slow_transactions_timeout.(TPS latency based) HTTP flood,HTTPS flood,Dynamic HTTP flood - TPS based Dos The rest of them will be under TPS layer7 parameters. Does this help?