Forum Discussion

Cirrostratus

Feb 17, 2016

Block keywords

Hello, I am looking for a way to block access based on the presence of certain keywords contained within the URL. For eg: GET /ctc/servlet/com.sap.ctc.util.ConfigServlet?param=com.sap.ctc.u...

Altostratus

Feb 17, 2016

This could be tricky, as you would have to check for valid variations (e.g. encoded) as well. A simple string-comparison would still leave room for attackers.

Would you happen to have a license for ASM? That would be the best way to cover the variations an attacker would use.

Another option would be to implement some kind of authentication mechanism.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Block keywords

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Checking for X-Forwarded-For against an Address Data-Group

SSL Bridging and FQDN rewrite Policy

Cisco TACACS+ Config on ISE LTM Pair

iRule causing requests to be duplicated (sometimes)

How can I get started with iCall

Related Content

Service Extensions with SSL Orchestrator: Advanced Blocking Pages

Block IP after a number of ASM Blocks

Massive DDoS, DanaBot Dismantled, Scraped Discord Messages and Signal Blocks Windows Recall

Block traffic

domain blocking

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS