Forum Discussion

iRule's avatar
iRule
Icon for Cirrus rankCirrus
Mar 12, 2023

Block requests from web browser and only allow from clients application in ASM

Dear Community, I have a requirment to allow email application traffic initialated from email clinets i.e outlook, boxer only and block all traffic initiated from web browsers. Please inform how we ...
@ASM
application
application delivery
security
waf
Daniel_Wolf's avatar
Daniel_Wolf
Icon for MVP rankMVP
Mar 12, 2023

Hi iRule,

you are not giving away a lot of information, like clients coming from internal / external IP adress ranges, or type of mail server (Exchange, Zimbra,...). Therefore my recommendations cannot be very specific to your issue.

However, the solution for your issue doesn't require ASM. You can use iRules or Local Traffic Policy to block access to a specific URLs (HTTP::path) or to block access by source IP (IP::client_addr) or by User-Agent String ([HTTP::header "User-Agent"]).
Of coure you can also use ASM and either set a disallowed URL or an IP Address Exception (Always Block this IP).

A word of caution: Personally, I consider blocking by User-Agent string as rubbish. UA strings can easily be spoofed.

KR
Daniel