For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Annsar_Akhtar's avatar
Annsar_Akhtar
Icon for Nimbostratus rankNimbostratus
Sep 17, 2017

APM, How to query custom header before routing to Logon Portal

Hi All   I am new to APM and setting up a POC to present a logon page, I have been able to set up a basic Access Policy but need to now look at only presenting the logon page to external users and...
application delivery
BIG-IP Access Policy Manager (APM)
iRules
Stanislas_Piro2's avatar
Stanislas_Piro2
Icon for Cumulonimbus rankCumulonimbus
Sep 17, 2017

Hi,

 

you can use following irule to create a session variable with IP address in header:

 

when ACCESS_SESSION_STARTED {
    ACCESS::session data set session.custom.CDN_client_IP [HTTP::header "X-Forwarded-For"]
}

then, create a branch rule filtering on this variable

 

if you want to disable APM when client IP is internal, you can use following code

 

when HTTP_REQUEST {
    if {[IP::addr [HTTP::header "X-Forwarded-For"] equals "1.1.1.0/24"]} {
        APM::disable
    }
}