F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Protecting Login Pages against Brute Force Attack v1

Problem this snippet solves: This is the first version of an iRule that can help protect a login site from brute force attacks. When a request is made against the application the iRule looks for ...

Updated Jun 05, 2023

Version 2.0

MVP

Joined July 21, 2008

View Profile

kamols_189601

Nimbostratus

Jan 23, 2019

@Interhost

¬†

There's a default time window which is set in the line 42

¬†

    set count [table incr $key]

As per the documentation if you don't specify the timeout in the 'table' command it will take default 180s https://clouddocs.f5.com/api/irules/table.html

¬†

If you want to specify your own time window you can set the timeout to 'indefinite' and set a 'lifetime' instead in such way

¬†

    table add $key indefinite  
    set count [table incr -notouch $key]

When the lifetime is reached the counter get's deleted so it starts over...

¬†

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Protecting Login Pages against Brute Force Attack v1

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS