Dear all, Can you give me any sources for, how can I prevent/mitigate these type of Dos attacks with F5-ASM Dos Profile? HTTP floodHTTPS floodDynamic HTTP floodBrobot attackSlowLorisSSL (re)negotiationTHC-SSL attack Thanks,

How did you build your ASM profile? If you are using RDP almost all the attack signatures are assigned and your app will be moderately protected.

Oh sorry so you create a DOS profile and modify the parameters. Are you asking where these parameters are?

For slowloris Max_slow_transactions and slow_transactions_timeout.(TPS latency based) HTTP flood,HTTPS flood,Dynamic HTTP flood - TPS based Dos The rest of them will be under TPS layer7 parameters. Does this help?

Forum Discussion

gh0st_325958

Nimbostratus

7 years ago

Dos Attacks, F5-ASM Dos Profile

Dear all,

Can you give me any sources for, how can I prevent/mitigate these type of Dos attacks with F5-ASM Dos Profile?

HTTP flood
HTTPS flood
Dynamic HTTP flood
Brobot attack
SlowLoris
SSL (re)negotiation
THC-SSL attack

Thanks,

3 Replies

Domai
Altostratus
7 years ago
How did you build your ASM profile? If you are using RDP almost all the attack signatures are assigned and your app will be moderately protected.
Domai
Altostratus
7 years ago
Oh sorry so you create a DOS profile and modify the parameters. Are you asking where these parameters are?
Domai
Altostratus
7 years ago
For slowloris Max_slow_transactions and slow_transactions_timeout.(TPS latency based) HTTP flood,HTTPS flood,Dynamic HTTP flood - TPS based Dos The rest of them will be under TPS layer7 parameters. Does this help?