Learn F5 Technologies, Get Answers & Share Community Solutions Join DevCentral

Filter by:
  • Solution
  • Technology
Answers

Brute force

Hi team is the any way to mitigate a brute force on the LTM big IP ?

Thanks in advance

0
Rate this Question

Answers to this Question

placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER

You have plenty of options:

Both AFM and ASM provide brute force mitigation.

You can also use iRules from a purely LTM perspective. There are plenty of example irules on DevCentral if you run a search.

You might want to look at
Project BAIU
authors website for the latest version

I haven't fully tested those irules, so using them is at your own risk, but the author is staking money on them.

1
Comments on this Answer
Comment made 12-May-2018 by Marc LeBeau 129

Hey thanks for the blurb! ProjectBAIU is pretty rock solid and if you need help understanding it let me know since I built it. There's a reason I had the gull to post $1,000 reward from my own money for anyone that can beat it over a month ago and no one has claimed the reward despite the attacks. They're still trying to figure out the timing but they ARE trying :)

Oh yeah, it's also got 6+ years proven success in the fortune 100 space reducing the digital theft for one company that had over $1/2 million annually, $8k weekly, to $0 annually and still running 6 years later. It's also protecting a fortune 80 Financial Institution, my own site, and a few other companies I loosely know have it running. The DDoS framework I built was also used to inspire the new F5 BaDoS in AFM however BAIU/BaDoS remain complimentary ;)

I doubt you'll be disappointed :)

David Holmes, F5's Security Evangelist recently published an article about my experience in protecting this space too. I've known him since around the start of this project so we've been in random chats about DDoS/Password Spraying since. Check it out at https://www.securityweek.com/spring-2018-password-attacks

0