This Day On The Street
Continue to site right-arrow
This account is pending registration confirmation. Please click on the link within the confirmation email previously sent you to complete registration.
Need a new registration confirmation email? Click here
Stocks Under $10 with 50-100% upside potential - 14 days FREE!

F5’s Flexible IRules Help Safeguard Customers’ Valuable IT Assets

Stocks in this article: FFIV

F5 Networks, Inc. (NASDAQ: FFIV) highlights the most useful and compelling security-focused iRules that help organizations enhance attack protection and provide secure access to IT resources. To coincide with the close of National Cyber Security Awareness Month, the iRules listed in this announcement have been compiled from the many F5, customer, and partner-contributed solutions on DevCentral , F5’s collaborative online community that helps address the industry’s most pressing application delivery challenges.

“Today’s security threats move fast and can be difficult to predict,” said Zeus Kerravala, Principal Analyst at ZK Research. “With iRules, customers can quickly react to changing conditions and deploy solutions that protect against attacks aimed at applications—currently among the most attractive targets. F5’s ability to swiftly address security issues that are unforeseen or unique to a customer’s environment is a key factor in its success. DevCentral and iRules continue to be significant differentiators for F5, giving customers a valuable ecosystem where they can contribute solutions and leverage the combined expertise of their peers.”

iRules is a customizable feature of F5 ® BIG-IP ® solutions, designed to add intelligence to networks and give customers enhanced control over how their traffic is managed, optimized, and secured. F5’s DevCentral site features iRules, technical documentation, discussion forums, blogs, media, wikis, and other resources supported by a community of more than 110,000 IT, network, and application professionals.

The iRules featured in this announcement represent collaborative efforts between F5 customers, employees, and other community members. Detailed information on each solution can be found using the links listed with each iRule below (free DevCentral registration required).

Enhance Protection from Targeted Attacks

  • HashDoS Defender – This iRule guards against hash collision “HashDoS” attacks through HTTP POST parameters. By enabling F5’s BIG-IP solutions to limit the post size and post variables, the attack is stopped before it reaches the backend servers, preventing servers from getting overwhelmed and thereby protecting the application. See this blog post for more information.
  • SSL Renegotiation DoS Countermeasure – This simple iRule enables BIG-IP solutions to mitigate SSL renegotiation DOS attacks. Without it, all web servers that support SSL are potentially susceptible to an asymmetric attack in which a small number of malicious clients can take down a server. See this blog post for more information.
  • Phishing Protection – This iRule helps mitigate phishing and scraping attempts by identifying suspicious requests from an unknown referrer and either blocking them outright or injecting code into the HTTP response to restrict their ability to duplicate an organization’s site content.

Control Access to Valuable IT Resources

  • Controlling Bots – If left unchecked, bots can generate a critical mass of requests and support a number of attack types that target an organization’s website. This iRule can be used to assign bots to a specific pool, throttle bot requests, introduce an artificial delay for bot requests, or simply block them completely.
  • HTTP Request Throttling – By design, web servers have limited CPU and memory resources. Servicing all requests on a first-come, first-served basis can open the door for attackers seeking to occupy all available system resources with specially crafted requests. By detecting the nature of specific requests, this iRule enables an IT administrator to slow the processing of particular request types and identify malicious actors.
  • Client Blocking Using IP Intelligence – With this iRule, BIG-IP solutions can automatically connect to an IP reputation database to regularly update a reference list of bad IP addresses, helping keep the latest known offenders at bay.

Safeguard Sensitive Information

  • Credit Card Tokenization – Many organizations employ a tokenization process to protect confidential information such as credit card details. This iRule is used on a BIG-IP device that sits in front of a secure web application server and uses sideband connections to a second virtual server that processes requests to and from the tokenization service.
  • Data Loss Prevention – This iRule helps organizations limit the chance of data leakage by configuring a “Regular Expression” matching technique that can recognize and remove certain types of information (credit card numbers, etc.) from server responses.

Improve DNS Security

  • DNS Blackholing – These iRules can be used to (1) protect outgoing web browsers from harmful sites, (2) protect network resources from certain DNS users or subnets, and (3) protect DNS infrastructures from certain source addresses. These capabilities can be used to prevent internal users from accessing harmful sites, direct users requesting certain hostnames to alternate servers for access control, and implement other provisions to enhance DNS security.

“F5’s iRules technology gives customers the flexibility to tailor how IT resources are accessed and secured, meaning that organizations can customize systems to best support their business needs,” said Mark Vondemkamp, VP of Security Product Management and Marketing at F5. “DevCentral is all about group-driven innovation. By combining the pooled expertise of customers with the intelligence and flexibility F5 products bring to the network, we provide a uniquely powerful offering that competitors simply can’t match.”

1 of 3

Select the service that is right for you!

Action Alerts PLUS
Try it NOW

Jim Cramer and Stephanie Link actively manage a real portfolio and reveal their money management tactics while giving advanced notice before every trade.

Product Features:
  • $2.5+ million portfolio
  • Large-cap and dividend focus
  • Intraday trade alerts from Cramer
  • Weekly roundups
TheStreet Quant Ratings
Try it NOW
Only $49.95/yr

Access the tool that DOMINATES the Russell 2000 and the S&P 500.

Product Features:
  • Buy, hold, or sell recommendations for over 4,300 stocks
  • Unlimited research reports on your favorite stocks
  • A custom stock screener
  • Upgrade/downgrade alerts
Stocks Under $10
Try it NOW

David Peltier, uncovers low dollar stocks with extraordinary upside potential that are flying under Wall Street's radar.

Product Features:
  • Model portfolio
  • Stocks trading below $10
  • Intraday trade alerts
  • Weekly roundups
Dividend Stock Advisor
Try it NOW

Jim Cramer's protege, David Peltier, identifies the best of breed dividend stocks that will pay a reliable AND significant income stream.

Product Features:
  • Diversified model portfolio of dividend stocks
  • Alerts when market news affect the portfolio
  • Bi-weekly updates with exact steps to take - BUY, HOLD, SELL
Real Money Pro
Try it NOW

All of Real Money, plus 15 more of Wall Street's sharpest minds delivering actionable trading ideas, a comprehensive look at the market, and fundamental and technical analysis.

Product Features:
  • Real Money + Doug Kass Plus 15 more Wall Street Pros
  • Intraday commentary & news
  • Ultra-actionable trading ideas
Options Profits
Try it NOW

Our options trading pros provide daily market commentary and over 100 monthly option trading ideas and strategies to help you become a well-seasoned trader.

Product Features:
  • 100+ monthly options trading ideas
  • Actionable options commentary & news
  • Real-time trading community
  • Options TV
To begin commenting right away, you can log in below using your Disqus, Facebook, Twitter, OpenID or Yahoo login credentials. Alternatively, you can post a comment as a "guest" just by entering an email address. Your use of the commenting tool is subject to multiple terms of service/use and privacy policies - see here for more details.
Submit an article to us!


DOW 17,778.27 +421.40 2.43%
S&P 500 2,055.30 +42.41 2.11%
NASDAQ 4,740.6490 +96.3370 2.07%

Brokerage Partners

Rates from

  • Mortgage
  • Credit Cards
  • Auto

Free Newsletters from TheStreet

My Subscriptions:

After the Bell

Before the Bell

Booyah! Newsletter

Midday Bell

TheStreet Top 10 Stories

Winners & Losers

Register for Newsletters
Top Rated Stocks Top Rated Funds Top Rated ETFs