Forum Discussion

eliton_199802

Nimbostratus

9 years ago

Directory blocking iRule with exceptions

I'm looking to implement that does the following If users attempt to access /directory1 /directory2 /directory3 They are blocked/logged, however they are allowed a specific file under ...

application delivery

irules

Cumulonimbus

9 years ago

Try this one:

when HTTP_REQUEST {
    switch -glob -- [string tolower [HTTP::path]] {
        "/directory1/file1" {
        }
        /"directory1*" {
            log local0. "[IP::client_addr] trying [HTTP::path]: blocked."
            reject
        }
        /"directory2/file27" {
        }
        "/directory2*" {
            log local0. "[IP::client_addr] trying [HTTP::path]: blocked."
            reject
        }
        default {
        }
    }
}

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Directory blocking iRule with exceptions

SSO Login Update Coming to DevCentral

Kevin - June 2026 Featured F5er

Tyler - May 2026 Featured Member

Recent Discussions

ASM attack signatures not syncing between active and standby F5

Query on source IP preservation for syslog traffic through F5 virtual server

Hardware BIG-IP appliance reach EOSS, but the software version running on it not yet?

VPN Communication Error with F5 BIG-IP Edge Client

simultaneous disabling / enabling of all LTM objects

Related Content

Logging/Blocking possible prompt injection

Azure Active Directory and BIG-IP APM Integration

Service Extensions with SSL Orchestrator: Advanced Blocking Pages

Block IP after a number of ASM Blocks

iControl 101 - #05 - Exceptions

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS