iRule needs updating from HTTP_CLASS for 11.4.x

Question

All, I was hoping someone could help me with the ASM iRule. I need the HTTP_CLASS removed as that option cannot be used on 11.4.x. I would appreciate any help in the right direction.
ltm rule block_webbots2 {
    when HTTP_REQUEST {
   set abort_trans 0
    Check the UA header value, set to lower case
   switch -glob [string tolower [HTTP::header User-Agent]] {
      "_googlebot_" -
      "_msnbot" -
      "_yahoo" {
          Bad UA, send a TCP reset
         set abort_trans 1
      }
   }
}
when HTTP_CLASS_SELECTED {
   if {[HTTP::class asm]==1}{
      if {$abort_trans==1}{
         ASM::disable
         reject
      }
   }

else
   {
      if {$abort_trans==1}{
         reject
      }
   }
}
}

jrahm · Answer

[POLICY::controls asm] in the HTTP_REQUEST event will tell you if asm is enabled, but I'm curious why if both conditions of if/else is to reject the request if abort_trans is 1 it matters? Can't you just reject it in the HTTP_REQUEST event without a policy check?

Forum Discussion

iRule needs updating from HTTP_CLASS for 11.4.x

1 Reply

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

Username is not filled in EdgeClient in the Modern customization

The GSLB pool is providing an incorrect IP to end users

iRule causing requests to be duplicated (sometimes)

F5 Networks F5CAB1 Exam - Need Help Regarding Prep

Cisco TACACS+ Config on ISE LTM Pair

Related Content

Re: F5 HTTPS Redirect iRule Update

November Security Research Update: Newly Released Attack Signatures

Updating SSL Certificates on BIG-IP using REST API

Using bash and tmsh to make bulk updates

Auditing Security Policy Updates

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS