Forum Discussion
Aantat
Cirrus
CirrusSend Attackers IP to another system via API
Hi experts! I'm newbie here and I need your help. I have a task to send Attackers IP to another system via API. For example I've a ASM and there are some triggered violation. I want to send that Att...
AantatCirrus
Cirrusxuwen, thanks! Thats brilliant! Yeah, you're right! Now i facing problem with authentication. Is it possible to:
1. Send first POST request with credentials.
2. Get cookies from response to first POST request.
3. Send second POST request with attacker IP in payload and cookies in headers?
Is it possible to do that in one iRule? Any suggestions?
xuwen
Cumulonimbus
CumulonimbusYou'd better give the complete format of curl for calling the api twice, and show the response result of NGFW(curl -v http://xxxx)
Think of two methods. Write your own code to test it:
1. HTTP Super SIDEBAND Requesto
2. Use iRulesLx, node.js send http post api is definitely simpler and faster than tcl
- Aantat
Hi xuwen
Could you please share some iRulesLX codes with sending http post? Thanks in advance
- Nikoolayy1
MVP
Aantat just a fast note the community is not F5 PS and you will need to do some coding. For example I googled F5 irules lx and I came up on this post and you could find others and use them for your usecase.
- xuwen
i agree with Nikoolayy1 "just a fast note the community is not F5 PS and you will need to do some coding"
use iRulesLX send twice https post, you can try the following ways:
1. google how to use node.js send https post
2. Find your programmer colleagues who can write node.js. This should be a very simple job for those who can write node.js
3. Seek customized iRules service from your F5 agent or F5 manufacturer, which may be charged
