BIG-IP AWAF Demo 46 - Block Distributed Brute Force Attacks w/ F5 BIG-IP Adv WAF (formerly ASM)
Вставка
- Опубліковано 22 січ 2025
- The purpose of this demo is to show how a BIG-IP Advanced WAF security policy can protect a web application against distributed brute force attacks. In this demo we will:
1. Show how the existing brute force protection blocks attacks from a single IP address.
2. Add an iRule to the virtual server than simulates the request coming from multiple IP address sources, and then show that the brute force attack now succeeds.
3. Add distributed brute force protection to the existing BIG-IP Advanced WAF security policy.
4. Attempt the brute force attack again and show that is no longer succeeding in discovering credentials.
5. Show the results in the BIG-IP Advanced WAF event log and the BIG-IP Advanced WAF brute force attacks log.
