Forum Discussion

Cirrus

Sep 19, 2017

iRule that triggers a capture of the HTTP request before rejecting

I'm using the following iRule to block an attack coming from an IP that is behind a proxy; however we can still see the original in the XFF header. So far this iRule is working but would like to tri...

application delivery

asm application security manager

Cirrostratus

Sep 19, 2017

Why not let the request go through to ASM, block it there where you can log all illegal requests, then intercept the blocking response and re-write it to a 410?

Recent Discussions

VIP needed for many UDP ports
Nov 14, 2024
JD_Tomzak
Creating Policy using Terraform
Nov 14, 2024
chelusco
Unable to get Internet in server using SWG forward Proxy.
Nov 14, 2024
Tonny
ASM don't block attack XSS
Nov 14, 2024
hoangnv
AWAF ADD-ON MODULE
Nov 14, 2024
ImadBak

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

iRule that triggers a capture of the HTTP request before rejecting

Recent Discussions

VIP needed for many UDP ports

Creating Policy using Terraform

Unable to get Internet in server using SWG forward Proxy.

ASM don't block attack XSS

AWAF ADD-ON MODULE

Related Content

Decrypting BIG-IP Packet Captures without iRules

Decrypting BIG-IP Packet Captures Automatically

DevCentral Connects hosts Capture the Flag!

Leveraging Ansible Rulebooks for Streamlined Event Triggers: Advantages and Benefits

Automating Packet Captures on BIG-IP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS