Apache Log4j2 (CVE-2021-44228) mitigation iApp

Problem this snippet solves: There is a CVE released related to Apache log4j, which could be a vulnerability on a server located behind the BIG-IP. F5 SIRT have helpfully created an iRule to miti...
Updated Feb 08, 2022
Version 2.0
apache
BIG-IP
iRules
log4j2
security
PeteWhite's avatar
PeteWhite
Icon for Employee rankEmployee
Dec 21, 2021

Hi Juan, yes it can be applied without ASM. This is an iRule that is assigned to the virtual server directly. You can obviously do this via the ASM Attack Signatures as well, which would probably be more performant.