Forum Discussion

Nimbostratus

Aug 29, 2019

iRule to modify response code for ASM blocking page

Hello everyone, I would love to receive your help to create an irule allowing me to modify the response code (with a 500) of the blocking page of ASM when an illegal request is matched. The go...

gersbah

Cirrostratus

Sep 06, 2019

when ASM_REQUEST_BLOCKING {
    set blocked 1
    set response [ASM::payload]
}
 
when HTTP_RESPONSE_RELEASE {
    catch {
        if { $blocked } {
            HTTP::respond 500 content $response
        }
    }
}

Something like this should work. The "catch" to prevent errors for not-blocked requests may be a bit crude. The thing eaa did with setting the indicator for all requests may be better. But this is shorter. I don't know, I'm not a programmer.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

iRule to modify response code for ASM blocking page

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

Catch Dynamic CRL Errors and Return Friendly Page

Bot Defense causing a lot of false positives

CPU load when Prometheus is scraping metrics from F5 BIG-IP LTM

TCPDUMP in BigIP for traffic coming from distrbuited cloud.

Adding my Product and support to bigF5 account

Related Content

Logging/Blocking possible prompt injection

iRule: modify uri and response

Response and blocking page

irule replace and modify uri and response

Introduction of Incident Response

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS