SSL Heartbleed iRule update
Updated Mar 18, 2022
Version 2.0Was this article helpful?
In the case of the early attacks, the heartbeat request payload is in plaintext, so the iRule could see that it's malicious.
However, this iRule as written will stop a malicious HB request even after the SSL handshake is completed and the SSL record payload is encrypted.
If you want a little bit more fine grained control and only stop heartbeat responses that have server data, click the link at the bottom of the story to see a server side iRule that stops the server responses if they are too large.