F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

Abdulmohsen_Mut's avatar
Abdulmohsen_Mut
Icon for Nimbostratus rankNimbostratus
Mar 22, 2006

Deny Large file download using HTTP::conent-Length

Hi,     I am trying to implement something similar to the one in the thread titled :redirect POSTs bigger than 1MB   http://devcentral.f5.com/Default.aspx?tabid=28&forumid=5&postid=5411&view=...
application delivery
dev
devops
iRules
Colin_Walker_12's avatar
Colin_Walker_12
Historic F5 Account
Mar 23, 2006
It looks like you're on the right track so far. Have you tested this rule yet? Is it behaving the way you'd expect?

 

 

As far as only opening certain packets goes, that's really not feasible. You're deciding which packets to disallow/alter based on information inside the packet, so you have to open all of them to see if they match or not.

 

 

The up side is, the ones that aren't over your maximum allowed conent length will skip most of the rule, and should cause very little impact to your system.

 

 

-Colin