sunny123
Mar 28, 2023Nimbostratus
F5 LTM/ASM , I-rule to ignore query string to prevent DDOS attack.
Hello guys,
My environment : F5 ltm, ASM learning mode.
Webapp: Public facing site with many pages with few search pages and filtering pages.
I see many people are hitting the site with unknow query string and trying to flood the site.
Is there a way to remove all the query string parameters and redirect to the url with out query string like url redirect module.
I want to exclude some pages that allow content filtering like using query string .
Do we want to use Irule to achieve this or ASM/LTM module has a better solution. I rules sure I can achieve this, but not sure if this is the best solutions.
Frequently someone/bot/crawler is trying to hit to make the CPU run very high like a DDOS kind of attack.
Any pointer is appreciated.
Regards
Janu