Directory blocking iRule with exceptions

Question

I'm looking to implement that does the following&nbsp;
If users attempt to access&nbsp;
/directory1
/directory2
/directory3&nbsp;
They are blocked/logged, however they are allowed a specific file under the directory, such as&nbsp;
/directory1/file1
/directory2/file27&nbsp;
Everything else in those directories besides the files specifies above are blocked/logged&nbsp;

jg · Answer

Try this one:
when HTTP_REQUEST {
    switch -glob -- [string tolower [HTTP::path]] {
        "/directory1/file1" {
        }
        /"directory1*" {
            log local0. "[IP::client_addr] trying [HTTP::path]: blocked."
            reject
        }
        /"directory2/file27" {
        }
        "/directory2*" {
            log local0. "[IP::client_addr] trying [HTTP::path]: blocked."
            reject
        }
        default {
        }
    }
}

.

Forum Discussion

Directory blocking iRule with exceptions

Recent Discussions

F5 BOT DEFENSE AWAF blocked some legitimate browsers

Advice to partial rename uri path

In Radius auth, how to allow second attempt of token input when the first input is incorrect?

Submenus missing in ASM Security Tab

XC Bot defense question

Related Content

Azure Active Directory and BIG-IP APM Integration

Block IP after a number of ASM Blocks

Block traffic

domain blocking

ASM IP Exceptions

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS