Forum Discussion

Nimbostratus

Apr 27, 2007

iRule to thwart FTP brute force attacks?

Perhaps this falls under the FirePass product.. I'm not sure, since I don't have that product. I'm curious if there is an "IPS" like rule that can stop FTP brute force attacks. Say after 10...

Historic F5 Account

May 15, 2007

You could certainly write something that had this kind of functionality. It would be a little bit involved, but not horribly difficult. I don't know of an example already on DevCentral that does exactly what you're asking, though.

There should be some great examples in the forums and codeshare to help you get started. Something like this one has most of the logic and flow done for you already: Click here

Colin

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

iRule to thwart FTP brute force attacks?

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Connection Rate Limit with log output

syslog over tcp and define management IP as source

Managing iRules configuration

Recommendation for Adv. Lab

Unable to Forward APM and AFM Logs to AWS CloudWatch Using Telemetry Streaming

Related Content

Implementing The Exponential Backoff Algorithm To Thwart Dictionary Attacks

F5 Distributed Cloud L7 DoS Attack Mitigation Roundup

Post-Quantum Cryptography, OpenSSH, & s1ngularity supply chain attack

November Security Research Update: Newly Released Attack Signatures

The HTTP/2 CONTINUATION frame attack

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS