Forum Discussion

Nimbostratus

Jan 16, 2018

Blacklisting HTTP Trafic iRule "leak" some matching requests to the backend servers

Hi, Suddenly having the need to add some per-referer filtering capabilities to our setup i created the following iRule, based on our IP blacklist iRules: when HTTP_REQUEST { Check if refere...

Cumulonimbus

Jan 17, 2018

Hello Benoit,

"event disable all" it is necessary? do you have others irule who uses the same event on the same vs?

because the risk that there may be, if you are redirecting the client back to the same virtual server, you may face situations where the client uses the same connection. This in turn means no further events will be executed, because of disabling all events for that given connection.

and therefore your restriction does not work...

Regards

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Blacklisting HTTP Trafic iRule "leak" some matching requests to the backend servers

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

CVE mitigation on F5 XC vs classic F5 WAF

Could not communicate with the system. Try to reload page.

F5 XC 503 upstream_reset_before_response_started{protocol_error}

UCS Encryption Question

BIG-IP VE: 40G Throughput from 4x10G physical NICs

Related Content

Global Blacklist or Whitelist

BIG-IP AFM Blacklisting Magic

LTM Policy – Matching Strategies

Jackson-Databind - A Story of Blacklisting Java Deserialization Gadgets

F5 Distributed Cloud - Service Policy - Header Matching Logic & Processing

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS