Forum Discussion

Nimbostratus

Nov 17, 2009

Persistence Flood

Hi I would like if the BigIP LTM has any prevention system against a persistence table flood... If we're playing with iRules adding persistence based on Set-Cookie I gu...

Cirrostratus

Nov 17, 2009

Hi Angel,

That's novel and could work. But then what happens if the attacker made a request with the JSID cookie in addition to the first request?

If you are concerned about such an attack, I think a better solution would be to use cookie insert persistence so that LTM doesn't have to track any sessions in its memory.

Aaron

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Persistence Flood

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Connection Rate Limit with log output

syslog over tcp and define management IP as source

Managing iRules configuration

Recommendation for Adv. Lab

Unable to Forward APM and AFM Logs to AWS CloudWatch Using Telemetry Streaming

Related Content

F5 XC – Persistence and Resiliency pt. I (persistence)

DNS Flood Protection v3

SYN-Floods and Countermeasures-Part 2

Overview of MITRE ATT&CK Tactic : TA0003 - Persistence

Protecting Beyond DNS Flood & DDoS

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS