101 · Question #479
An administrator needs to rapidly deter e newly discovered security threat to a remote desktop application. Which F5 feature provides this functionality?
The correct answer is A. iRules. F5 iRules allow administrators to write custom traffic-handling scripts that can be deployed immediately to block or redirect specific threat patterns targeting any application protocol.
Question
An administrator needs to rapidly deter e newly discovered security threat to a remote desktop application. Which F5 feature provides this functionality?
Options
- AiRules
- BSSL profiles
- CProxy SSL
- DSPDY
How the community answered
(31 responses)- A74% (23)
- B6% (2)
- C16% (5)
- D3% (1)
Why each option
F5 iRules allow administrators to write custom traffic-handling scripts that can be deployed immediately to block or redirect specific threat patterns targeting any application protocol.
iRules are F5's Tcl-based scripting language that intercept, inspect, and manipulate traffic in real time. They can be authored and applied to a Virtual Server within minutes, making them the fastest mechanism to block or redirect traffic matching a newly discovered threat signature targeting a remote desktop application.
SSL profiles handle TLS handshake parameters and certificate management, not custom traffic-blocking logic for application-layer threats.
Proxy SSL passes the SSL session through to the backend server without full termination and has no mechanism to inspect or block specific threat patterns.
SPDY is a deprecated HTTP multiplexing protocol optimization feature and has no threat-mitigation or traffic-filtering capability.
Concept tested: F5 iRules for rapid custom threat mitigation
Source: https://techdocs.f5.com/en-us/bigip-17-1-0/irules-reference/irules-reference-guide.html
Topics
Community Discussion
No community discussion yet for this question.