Control file types for SFTP VIP (FastL4) iRule?

Question

Hello Folks,&nbsp;
One of the customers has deployed the SFTP VIP (Performance L4) on a custom port i.e. 4848 and that is working well without any issues. Later, customer wants to control file types on this VIP. This means, only XML should be allowed, and rest of the files should be declined.&nbsp;
Since it is SFTP and we are using FastL4, I doubt we can sniff the communication without having "PrivateKey", correct me if I am wrong. I was wondering if we can fetch such details from TCP iRule event/commands with bearing all the limitations in mind?&nbsp;
Thank you,
Darshan&nbsp;

kevin_stewart · Answer

You're talking about FTP over SSH, which is encrypted. There'd be no opportunity to read the underlying application layer data.&nbsp;

Forum Discussion

Control file types for SFTP VIP (FastL4) iRule?

Recent Discussions

Should config via cli rather than gui?

Background Tasks

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

F5 Health Monitor Receive String as JSON

Related Content

traffic from APM to Domain Controller

FastL4 VIP issue

owa iapp assign irule

iRULE regsub error

link controller

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS