Forum Discussion

Cirrus

Sep 19, 2017

iRule that triggers a capture of the HTTP request before rejecting

I'm using the following iRule to block an attack coming from an IP that is behind a proxy; however we can still see the original in the XFF header. So far this iRule is working but would like to tri...

application delivery

asm application security manager

Cirrostratus

Sep 19, 2017

Why not let the request go through to ASM, block it there where you can log all illegal requests, then intercept the blocking response and re-write it to a 410?

Recent Discussions

Background Tasks
Nov 22, 2024
eagertolearn
APM with EntraID as idP / request signed
Nov 22, 2024
andradejp
Should config via cli rather than gui?
Nov 22, 2024
Herman2024
APM Modern Customization - modify Header in user-common.js and form in user-logon.js
Nov 22, 2024
emalzer
Which process is consuming higher CPU
Nov 22, 2024
eagertolearn

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

iRule that triggers a capture of the HTTP request before rejecting

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

Decrypting BIG-IP Packet Captures without iRules

Decrypting BIG-IP Packet Captures Automatically

DevCentral Connects hosts Capture the Flag!

Automating Packet Captures on BIG-IP

Leveraging Ansible Rulebooks for Streamlined Event Triggers: Advantages and Benefits

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS