For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Scooter_372595's avatar
Scooter_372595
Icon for Nimbostratus rankNimbostratus
Sep 21, 2018

Access Control based on URI and Referer

Hi I have a situation where I need an Irule to control access to a site I control.   The rules I need are:   a) To allow access based on a uri, eg https://mysite.com/scooter/scooterspagers/*  ...
application delivery
iRules
LTM
volodh_214395's avatar
volodh_214395
Icon for Nimbostratus rankNimbostratus
Sep 30, 2018

You may use something like this iRule to Allow access to site based on an approved referer header in the request-

when HTTP_REQUEST { 
if { ([HTTP::header exists "Referer"]) and 
([URI::host [HTTP::header value Referer]] eq "approved-referer1.xxx") } {
Allow Request to go throutht...
} 

elseif { ([HTTP::header exists "Referer"]) and 
([URI::host [HTTP::header value Referer]] eq "approved-referer2.xxx") } {
Allow Request to go throutht...

} else {
HTTP::redirect https://www.xxx.com
}

}

I'm using redirect to some web page if connection is not from approved referer1 or referer2 but it can be modified to another action. I hope it helps.