Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

malakibrahim's avatar
malakibrahim
Icon for Nimbostratus rankNimbostratus
6 years ago
Solved

APM policy based on HTTP host header

Hi Is there any variable that can match HTTP host header? I have one VIP that serve multiple application "FQDN" and I need to apply different authentication method based on HTTP host header "FQDN" ...
application delivery
big-ip
BIG-IP Access Policy Manager (APM)
security
  • Yoann_Le_Corvi1's avatar
    Yoann_Le_Corvi1
    6 years ago

    Hi

     

    I thing the default built-in APM variable "session.server.network.name" should also do the trick.

     

    Yoann

iaine's avatar
iaine
Icon for Nacreous rankNacreous
6 years ago

Hi

You could save the HTTP Host value as an APM variable when the policy first starts using something like...

when ACCESS_SESSION_STARTED {
ACCESS::session data set session.custom.httphost [HTTP::host]
}

Then, at the start of you policy, add in an Empty Item that makes a path decision based on the value of this variable.

Expression: expr {[mcget {session.custom.httphost}] == "portal.test.com"}

malakibrahim's avatar
malakibrahim
Icon for Nimbostratus rankNimbostratus
6 years ago

Thank you for explaining it by screenshot, nice to see how to set custom variables and match in APM policy. but also as   said ""session.server.network.name" can match it.