Forum Discussion
court_c_brown_1
Nimbostratus
May 07, 2014Throttling 404 requests to protect against DoS attacks
First off, I would like to say that calling me a noob would be an insult to noobs. With that said! I am investigating the possibility of throttling 404 requests in order to prevent potential DoS att...
What_Lies_Bene1
Cirrostratus
May 08, 2014I'm not sure you've thought this through. Wouldn't an attacker prefer to make multiple requests for correct but 'heavy' URLs? What happens if someone makes a mistake coding a web page and genuine clients make invalid requests because of it?
Whilst it's more than possible to use an iRule to meet your stated goal, introducing logic to reduce false negatives and cover other eventualities will make it very complex and considering other possible attack vectors it's probably not worth the effort.
ASM is of course an option.
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects