CodeShare
Have some code. Share some code.
cancel
Showing results for 
Search instead for 
Did you mean: 

Articles

Check a Virtual Server's SSL Status

Code is community submitted, community supported, and recognized as ‘Use At Your Own Risk’. Short Description A question was asked on how you filter which virtuals might have clientside/serverside profiles, or ssl without profiles as passthrough. The...

JRahm by Community Manager
  • 372 Views
  • 4 comments
  • 2 kudos

Logging DNS Requests

Code is community submitted, community supported, and recognized as ‘Use At Your Own Risk’. Short Description (From Author @Torijori_Yamamada this post in Technical Forum) I've needed an iRule to read query & query-type from dns packets and send them...

JRahm by Community Manager
  • 110 Views
  • 0 comments
  • 0 kudos

F5 LTM HA pair upgrade Automation using Python

Code is community submitted, community supported, and recognized as ‘Use At Your Own Risk’.Short DescriptionPerform autonomous F5 LTM upgrades with pythonUsing a single python script to Automate F5 LTM's deployed as a High Available PairProblem solve...

Anesh by Cirrostratus
  • 1120 Views
  • 0 comments
  • 3 kudos

Decrypting TLS with the tcpdump sslprovider

I will share my script to decrypt TLS on the F5 v15+. You do not need to change any TLS oder cipher settings, have access to private keys or add special iRules. It should work out of the box with all TLS versions.It uses the information that the tcpd...

ASN Details

Code is community submitted, community supported, and recognized as ‘Use At Your Own Risk’. Short Description This script adds a cli tool (in python) to quickly look up autonomous systems by number or name. Problem solved by this Code Snippet Not a p...

JRahm by Community Manager
  • 810 Views
  • 0 comments
  • 0 kudos

Spring4shell iApp

Code is community submitted, community supported, and recognized as ‘Use At Your Own Risk’. Short Description iApp to simplify deployment of spring4shell  Problem solved by this Code Snippet My friend and colleague Ismael wrote a useful iRule to miti...

PeteWhite_0-1651762585719.png GettyImages-1173218079.jpg

iRule to serve security.txt file - RFC 9116

One week ago, on 27. April 2022, the IETF has published RFC 9116 describing the security.txt file. The purpose of this file is to aid in responsible disclosure, a process that allows security researchers to safely report vulnerabilities. The file sh...

iRule to assist with CVE-2022-22965 mitigation

Hi there, On March 30, 2022, a remote code execution (RCE) vulnerability was found in the Java Spring Framework, identified by the CVE 2022-22965. I am sharing an example iRule to assist with mitigation of this CVE. This may require further customiz...

Another Bash script to backup a BIG-IP device.

The backup script is executed from the BIG-IP device and the UCS file created is copied to a remote SCP server. After the file has been copied, it is deleted locally. All the backup steps are logged to the local syslog. https://github.com/pedrorourem...

SNI Routing with DNS Lookup

SNI (Server Name Indication) is an extension of the TLS protocol that is used by the client to indicate the hostname it is attempting to connect to at the start of the SSL handshake.  In the case of the BIG-IP the SNI can be used to select which cli...

bluecoat.png

Block Log4j with use of IOCs

Problem this snippet solves:iRule that helps to mitigate the Log4j vulnerability with use of public available IOCs. Currently the following IOCs can be used:cert-agid.gov.it (Contains scan IP's): https://cert-agid.gov.it/download/log4shell-iocs.txtNL...

Apache Log4j2 (CVE-2021-44228) mitigation iApp

Problem this snippet solves: There is a CVE released related to Apache log4j, which could be a vulnerability on a server located behind the BIG-IP. F5 SIRT have helpfully created an iRule to mitigate this vulnerability, this is an iApp to simplify cr...

rtaImage (7).png

Persist using a string in an HTTP URI

Problem this snippet solves:Sample Request:https://x.x.x.x/abcdefgh-ijkl-mnop-qrst-0123456789#value=%22I%20am%20the%20one%22&name=%22Mike%22&p=%220f2fd14389da8d85fbd215c789f7f7d5%22Requirement:Extract Account ID from request URI such as ‘abcdefgh-ijk...

Create a VPC VoltMesh AWS site (two interfaces node)

Problem this snippet solves:How to create a VoltMesh node inside an existing VPC. The VoltMesh node will be a two interfaces node and so could be used as both an ingress or egress gateway for the VPC.How to use this snippet:Pre-Requirements:Get and c...

Create an HTTPS Origin based on public IP for VoltMesh

Problem this snippet solves:How to create an HTTPS Origin that could be used in a VoltMesh HTTP or HTTPS Load-Balancer.This Origin is based on a public IP.How to use this snippet:Pre-requirements:Have a Volterra API Certificate. Please see this page ...

Create an HTTPS Origin based on public FQDN for VoltMesh

Problem this snippet solves:How to create an HTTPS Origin that could be used in a VoltMesh HTTP or HTTPS Load-Balancer.This Origin is based on a public FQDN name.How to use this snippet:Pre-requirements:Have a Volterra API Certificate. Please see thi...

Create an HTTPS Origin based on private IP for VoltMesh

Problem this snippet solves:How to create an HTTPS Origin that could be used in a VoltMesh HTTP or HTTPS Load-Balancer.This Origin is based on a private IP that can be reached with a Volterra node deployed on the same site as the ressource.How to use...

Labels
Top Contributors