Forum Discussion

Nimbostratus

Jan 16, 2018

Blacklisting HTTP Trafic iRule "leak" some matching requests to the backend servers

Hi, Suddenly having the need to add some per-referer filtering capabilities to our setup i created the following iRule, based on our IP blacklist iRules: when HTTP_REQUEST { Check if refere...

Cumulonimbus

Jan 17, 2018

Hello Benoit,

"event disable all" it is necessary? do you have others irule who uses the same event on the same vs?

because the risk that there may be, if you are redirecting the client back to the same virtual server, you may face situations where the client uses the same connection. This in turn means no further events will be executed, because of disabling all events for that given connection.

and therefore your restriction does not work...

Regards

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Blacklisting HTTP Trafic iRule "leak" some matching requests to the backend servers

Introducing the F5 Application Study Tool (AST)

Displaying Application Study Tool (AST) Dashboards in Your Own Grafana Instance

Recent Discussions

What dose "Accept" do in BIG-IP ASM event logs

Is anyone using Certbot for F5 certificate automation? If not, what tool do you use?

Change Content-Type from application/octet-stream to multipart/form-data

f5 AI Gateway pii-redactor not working

Terraform apply failures - loadbalancer_type.https.port_choice

Related Content

Global Blacklist or Whitelist

BIG-IP AFM Blacklisting Magic

F5 Distributed Cloud - Service Policy - Header Matching Logic & Processing

Jackson-Databind - A Story of Blacklisting Java Deserialization Gadgets

LTM Policy – Matching Strategies

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS