Forum Discussion

Nimbostratus

Mar 16, 2018

Block URL iRule

Hi, I try to block URL based on the DNS request : when DNS_REQUEST {if {[class match [DNS::question name] contains "URL_blocking"] } { log local0. "website blocked [DNS::question name]" DNS::...

Nimbostratus

Mar 20, 2018

For those interested, this is the best solution I found :

when DNS_REQUEST {

set lower [string tolower [DNS::question name]]
set q_name_label_split [split $lower "."]
set q_name_label [lindex $q_name_label_split end-1] 

if {[class match $q_name_label equals "URL_blocking"] }{
 log local0. "website blocked [DNS::question name] <$q_name_label> $q_name_label $lower"
 DNS::header rcode NXDOMAIN
 DNS::return
  }  
}

I split the request and get the domain to compare to my list

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Block URL iRule

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Changes to DO and AS3 GitHub - no longer monitored

[ASM] : SQL-INJ "end-quote UNION" - How to allow this signature to specific url/uri/parameter only

[ASM] - How to disable the SQL injection attack signatures

[ASM] : "Request length exceeds defined buffer size " - How to increase the limit ?

Help with SSH Virtual Server

Related Content

Logging/Blocking possible prompt injection

MS Exchange ProxyNotShell block implemented via iRules

Service Extensions with SSL Orchestrator: Advanced Blocking Pages

allow one url from blocks geolocation

iRule Recipe 1: Single URL Explicit Redirect

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS