How does ASM's dos strategy return the interception response page

Question

How does ASM's dos strategy return the interception response page? Is it possible to achieve DoS protection for behavioral and stress-based interception and return to the response page through irules?

daniel_wolf · Answer

Hi longyuan,&nbsp;Behavioral DoS is much more effective against mitigating multi-vector Layer 7 DoS attacks.Stress-based DoS is better at defining specific rate limits.Technically it is possible to configure both protections concurrently, complementing each other.From experience I recommend against configuring both of them together. BaDOS alone is fine, it works reliable. Setting threshold values for for stress-based mitigation can be cumbersome and is error prone.&nbsp;Details about the mitigation methods can be read here:https://techdocs.f5.com/en-us/bigip-14-1-0/big-ip-asm-implementations-14-1-0/preventing-dos-attacks-on-applications.html&nbsp;KRDaniel

longyuan · Answer

How to set the intercept response page for dos attack?

daniel_wolf · Answer

There in no response page you can configure, attackers will get a TCP reset.See here: K04550557: Overview of BIG-IP ASM blocking response

Forum Discussion

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

VIP control across data centers - how to ensure only 1 VIP is up at a time?

FQDN Node Configuration

Logical Disk Full to Migrate rSeries

Priority Group Activation is not working

Changes to DO and AS3 GitHub - no longer monitored

Related Content

Crafting a Cloud-Based Antifragile Cyber Resiliency Strategy

Modern Deployment and Security Strategies for Kubernetes with NGINX Gateway Fabric

ESRP Strategies: DNS Water Torture Attack

LTM Policy – Matching Strategies

Introduction of Incident Response