Forum Discussion

Michele_Jetz's avatar
Michele_Jetz
Icon for Nimbostratus rankNimbostratus
May 10, 2017

ASM DOS Profile

Hello Together,

 

I would like to introduce our scenario first. We have a Domain hostet on our BigIP LTM/ASM Cluster. We have now the requirement, to enforce TPS Based DOS Policies on a list of URIs where a Web Application resides

 

I have already prepared a Layer 7 Policy to enable only on these URIs the created DOS Profile. Unfortunately, a DOS Profile do not offer some Option for Response Pages, like the ASM Profiles.

 

I can just Block/Rate Limit.

 

Is there some hidden option to accomplish this? It would be even helpful to just send the default ASM Respone Page with the Support ID Variable <%TS.request.ID()%>

 

I dont want to implement this with an iRule, because F5 recommend the usage of Policy and this is only the beginning. So there come more and more requirements like the above

 

Hopefully you can give me some hints here Best Regards Michele

 

2 Replies

  • Anesh's avatar
    Anesh
    Icon for Cirrostratus rankCirrostratus

    What is the purpose of configuring a response page for a DOS attack?

     

  • Tikka_Nagi_1315's avatar
    Tikka_Nagi_1315
    Historic F5 Account

    The DoS mitigation response pages are not supported by design. If you have a valid use case please share.