on
15-Dec-2021
09:10
- edited on
08-Feb-2022
14:23
by
Rebecca_Moloney
Problem this snippet solves:
There is a CVE released related to Apache log4j, which could be a vulnerability on a server located behind the BIG-IP.
F5 SIRT have helpfully created an iRule to mitigate this vulnerability, this is an iApp to simplify creation and management of the iRule.
How to use this snippet:
Tested this on version:
15.1
Hi Pete, Nice! Thanks for sharing. Maybe you can also make it possible to modify the priority setting, so you can give it a higher priority when multiple iRules are being used on the same virtual server.
Hi Juan, yes it can be applied without ASM. This is an iRule that is assigned to the virtual server directly. You can obviously do this via the ASM Attack Signatures as well, which would probably be more performant.