Forum Discussion

Nimbostratus

Mar 11, 2015

Create User-Defined Signature for user agents

Hi All, I want to create a user defined signature that triggers and block after it found the user agent "torrent" I will create a user defined signature to search the header for "torrent" t...

ASM Advanced WAF

security

ltwagnon

Ret. Employee

Mar 12, 2015

It sounds like you are headed in the right direction with this. Here's an article I wrote that discusses custom ASM signatures. In my case, I used the "content" rule, but it sounds like you are correct in using the "headercontent" rule for your situation. https://devcentral.f5.com/articles/blocking-spam-with-custom-attack-signatures

I hope this helps!

Forum Discussion

Create User-Defined Signature for user agents

Recent Discussions

Migration from i series 10200 with 1 child VCMP to r series 10900 series

Azure DP-100 Exam Questions

Deploying F5 WAF in front of Azure Web App Services

What happens if I only enable ASM in BIG-IP Under System > Resource Provisioning

What is the meaning is 52% block in WAF

Related Content

Create F5 BIG-IP Next Instance on Proxmox Virtual Environment

Create a DevCentral account

Support of WAF Signature Staging in F5 Distributed Cloud (XC)

Mitigating JSON-based SQL injection with BIG-IP ASM / Advanced WAF Attack Signatures

BoT Defense Profile, Signature Enforcement