Forum Discussion

sunny123's avatar
Icon for Nimbostratus rankNimbostratus
Mar 28, 2023

F5 LTM/ASM , I-rule to ignore query string to prevent DDOS attack.

Hello guys,

My environment : F5 ltm, ASM learning mode.

Webapp: Public facing site with many pages with  few search pages and filtering pages.

I see many people are hitting the site with unknow query string and trying to flood the site.

Is there a way to remove all the query string parameters and redirect to the url with out query string like url redirect module.

I want to exclude some pages that allow content filtering like using query string .

Do we want to use Irule to achieve this or ASM/LTM module has a better solution.  I rules sure I can achieve this, but not sure if this is the best solutions.

Frequently someone/bot/crawler  is trying to hit to make the CPU run very high like a DDOS kind of attack.

Any pointer is appreciated.



2 Replies