Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

okmokmz's avatar
okmokmz
Icon for Nimbostratus rankNimbostratus
Jun 04, 2019

Unable to consistently send resets with irule using documented methods

I need to create an irule that looks for the string "error" in the HTTP response, and if it is found sends a reset back to the client rather than the response with "error" that was analyzed by the F5...
devops
http
irules
LTM
reset
response
okmokmz's avatar
okmokmz
Icon for Nimbostratus rankNimbostratus
Jun 04, 2019

when HTTP_RESPONSE {

   log local0. "TEST1"

              if { [HTTP::status] != 200 } {

                 log local0. "TEST2"

                             HTTP::respond 404 -reset

                             TCP::close

              }

              elseif { [HTTP::payload] contains "error" } {

                 log local0. "TEST3"

                             HTTP::respond 404 -reset

                             TCP::close

              }

              else {

       log local0. "TEST4"

              }

}

 

-------------------------------------------------

 

when HTTP_RESPONSE {

   log local0. "TEST1"

              if { [HTTP::status] != 200 } {

                 log local0. "TEST2"

                             HTTP::respond 404

                             TCP::close

              }

              elseif { [HTTP::payload] contains "error" } {

                 log local0. "TEST3"

                             HTTP::respond 404

                             TCP::close

              }

              else {

       log local0. "TEST4"

              }

}

 

-------------------------------------------------

 

when HTTP_RESPONSE {

   log local0. "TEST1"

              if { [HTTP::status] != 200 } {

                 log local0. "TEST2"

                             reject

              }

              elseif { [HTTP::payload] contains "error" } {

                 log local0. "TEST3"

                             reject

              }

              else {

       log local0. "TEST4"

              }

}

 

---------------------------------------------------------

 

when HTTP_RESPONSE {

   log local0. "TEST1"

              if { [HTTP::status] != 200 } {

                 log local0. "TEST2"

                             HTTP::respond 404 -reset

              }

              elseif { [HTTP::payload] contains "error" } {

                 log local0. "TEST3"

                             HTTP::respond 404 -reset

              }

              else {

       log local0. "TEST4"

              }

}

 

--------------------------------------------------------

 

when HTTP_RESPONSE {

   log local0. "TEST1"

              if { [HTTP::status] != 200 } {

                 log local0. "TEST2"

                             HTTP::respond -reset 404

                             TCP::close

              }

              elseif { [HTTP::payload] contains "error" } {

                 log local0. "TEST3"

                             HTTP::respond -reset 404

                             TCP::close

              }

              else {

       log local0. "TEST4"

              }

}

 

---------------------------------------------------------

 

when HTTP_RESPONSE {

   if { [HTTP::payload] contains "error" } {

       HTTP::collect [HTTP::header Content-Length]

   }

}

 

when HTTP_RESPONSE_DATA {

   HTTP::respond 404 -reset

}

 

-------------------------------------------------------------

 

when HTTP_RESPONSE {

   if { [HTTP::payload] contains "error" } {

       HTTP::collect [HTTP::header Content-Length]

   }

}

 

when HTTP_RESPONSE_DATA {

   HTTP::respond -reset 404

}

 

---------------------------------------------------------------

 

when HTTP_RESPONSE {

   if { [HTTP::payload] contains "error" } {

       HTTP::collect [HTTP::header Content-Length]

   }

}

 

when HTTP_RESPONSE_DATA {

   HTTP::respond 404

}