Forum Discussion

heenakhanam0708's avatar
heenakhanam0708
Icon for Altocumulus rankAltocumulus
Jul 09, 2025

How to Block Source IP for 24 Hours After TPS Violation (F5 DoS / iRule / SSL Proxy Setup)

Hi everyone, We are currently working on a traffic management requirement and would appreciate your input. Requirement: We want to implement a mechanism that blocks a source IP for 24 hours once i...
application delivery
security
VishnuGatla's avatar
VishnuGatla
Icon for Cumulonimbus rankCumulonimbus
Jul 09, 2025

 

Hi heenakhanam0708​ 

The HTTP_REQUEST event only triggers on HTTP traffic after SSL decryption and with an HTTP profile assigned. If you want to block at the TCP or IP level (before HTTP parsing), you can use the CLIENT_ACCEPTED event instead, which works on all TCP connections.