Protecting Login Pages against Brute Force Attack v1

Problem this snippet solves: This is the first version of an iRule that can help protect a login site from brute force attacks. When a request is made against the application the iRule looks for ...
Updated Jun 06, 2023
Version 2.0
devops
iRules
security
kamols_189601's avatar
kamols_189601
Icon for Nimbostratus rankNimbostratus
Jan 24, 2019

@Interhost

 

There's a default time window which is set in the line 42

 

    set count [table incr $key]

As per the documentation if you don't specify the timeout in the 'table' command it will take default 180s https://clouddocs.f5.com/api/irules/table.html

 

If you want to specify your own time window you can set the timeout to 'indefinite' and set a 'lifetime' instead in such way

 

    table add $key indefinite  
    set count [table incr -notouch $key]

When the lifetime is reached the counter get's deleted so it starts over...