ASM: block a specific URL

Question

Hi i want to block a specific URL, example: xzy.abc.com/aaa/bbb/ddd/* and allow every thing else like xyz.abc.com/* through ASM, i have tried disallowing the URL(Security>Application Security>URLs>Disallow URLs) but did not work. Please help.

anesh · Answer

Did you check your Policy Blocking Settings? Does it have Block checkbox selected for "Illegal URL"? If not, go ahead and select it, apply the policy changes, and you're done.&nbsp;

erik_novak · Answer

Go to Security  ››  Application Security : URLs : Disallowed URLs : Disallowed HTTP URLs and add the specific URI you wish to block.&nbsp;

nathe · Answer

Confirm you're not in transparent mode&nbsp;

anesh · Answer

try
create a custom violation named as Illegal_Url
when HTTP_REQUEST {
  set reqBlock 0
  if { ([[string tolower [HTTP::uri]] contains "/aaa/bbb/ddd/")} {
  set reqBlock 1
  }
}

when ASM_REQUEST_DONE {
  if { $reqBlock == 1} {
    ASM::raise Illegal_Url
  }
}

stanislas_piro2 · Answer

Did you enable Trigger ASM iRule event in your ASM policy?&nbsp;

Forum Discussion

ASM: block a specific URL

5 Replies

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Not seeing the latest F5OS-A when running Journeys

Related Content

Block IP after a number of ASM Blocks

Service Extensions with SSL Orchestrator: Advanced Blocking Pages

Post of the Week: Blocking a Specific URI

Can't upload msg file - ASM block

ASM - Block GET requests on a specific URL

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS