iRule needs updating from HTTP_CLASS for 11.4.x

Question

All, I was hoping someone could help me with the ASM iRule. I need the HTTP_CLASS removed as that option cannot be used on 11.4.x. I would appreciate any help in the right direction.
ltm rule block_webbots2 {
    when HTTP_REQUEST {
   set abort_trans 0
    Check the UA header value, set to lower case
   switch -glob [string tolower [HTTP::header User-Agent]] {
      "_googlebot_" -
      "_msnbot" -
      "_yahoo" {
          Bad UA, send a TCP reset
         set abort_trans 1
      }
   }
}
when HTTP_CLASS_SELECTED {
   if {[HTTP::class asm]==1}{
      if {$abort_trans==1}{
         ASM::disable
         reject
      }
   }

else
   {
      if {$abort_trans==1}{
         reject
      }
   }
}
}

jrahm · Answer

[POLICY::controls asm] in the HTTP_REQUEST event will tell you if asm is enabled, but I'm curious why if both conditions of if/else is to reject the request if abort_trans is 1 it matters? Can't you just reject it in the HTTP_REQUEST event without a policy check?

Forum Discussion

iRule needs updating from HTTP_CLASS for 11.4.x

1 Reply

Bram - January 2026 Featured Member

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

2026 301a exam

How can I measure Advanced WAF (ASM) throughput on a running BIG-IP VE (per VIP / per policy)?

Question about adding VEs to existing physical appliance device group without ASM licenses

What is the best practice for migrating from iseries to rseries?

BIG-IP i11000 – License compatibility with TMOS versions above 14.1.2 and Web GUI inaccessible

Related Content

Re: F5 HTTPS Redirect iRule Update

November Security Research Update: Newly Released Attack Signatures

Updating SSL Certificates on BIG-IP using REST API

Using bash and tmsh to make bulk updates

Auditing Security Policy Updates

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS