Forum Discussion

ghchee's avatar
ghchee
Icon for Nimbostratus rankNimbostratus
Dec 22, 2023

iRule to enable specify bot Defense profile

I wanna to create irule to enable specify bot Defense profile for specify host,
Are the script below correct?  please comments.

irule for bot defense
===================
when HTTP_REQUEST {
switch [string tolower [HTTP::host]] {
"hrweb.abc.om" {
ASM::enable "/Common/hrweb_SecPolicy"
BOTDEFENSE::enable "/Common/hrweb-bot-defense"
pool hrweb_pool
log local0. "hrweb_pool selected"
}

"Infra.abc.com" {
ASM::enable "/Common/infa_SecPolicy"
BOTDEFENSE::enable "/Common/infa-bot-defense"
pool infa_pool
log local0. "infa_pool selected"
    }
  }
}

    • ghchee's avatar
      ghchee
      Icon for Nimbostratus rankNimbostratus

      Hi Juergen,

      Do you mean i need to create the separeate irule for ASM policies and BOTDEFENSE profile  as below?
      Can provide an example? 

      irule for bot defense (e.g.)
      =======================
      when HTTP_REQUEST {
      if {[HTTP::host] starts_with "hrweb.abc.om"} {
      BOTDEFENSE::enable "/Common/hrweb-bot-defense"
      } else {[HTTP::host] starts_with "Infra.abc.com"} {
      BOTDEFENSE::enable "/Common/Infra-bot-defense"
      }
      }