What is the best way to block ajax requests?

Question

I have a page running behind the F5, the application makes queries to a database through AJAX, however for a programming error they left part of the code open, and after the time we discovered that a user made queries from an application through the page through AJAX requests.&nbsp;
The error of the code was solved, blocking those queries.&nbsp;
The query is: what is the best way (with an IRULE LTM, ASM, etc.) to block all AJAX queries that come from a user?&nbsp;
Thank you very much.&nbsp;

nathe · Answer

What about an irule like this?
when HTTP_REQUEST { 
if { [HTTP::header "X-Requested-With" ] equals "XMLHttpRequest" } { 
drop 
   } 
 }

Or a custom ASM signature with the following rule?
headercontent:"XMLHttpRequest"; nocase;
To be honest, a bit of a punt this. Other DCers may come back and highlight major errors with these approaches 🙂

Forum Discussion

What is the best way to block ajax requests?

Recent Discussions

Diameter iRules attachment?

F5 BIG-IP

BIG-IP Oauth Client and AS

How to Renew F5 Device Certificate

Use of SSL Decryption.

Related Content

Block requests by reverse DNS record

Beware, your logs - how blocked log4shell, Spring4Shell etc requests can still lead to compromise

Block Referral Requests

Microservices priority, Blocked Request (Redirect URL)

Block IP after a number of ASM Blocks

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS