Do not allow IP through https

Question

Hello,&nbsp;
I am inquiring on how to do the following:&nbsp;
Do not allow IP access through HTTPS&nbsp;
Example: 
https://33.33.33.33 &lt; - Don't allow this
https://dns.name.com &lt; - Allow this only&nbsp;
I am not sure how about to search this through the F5 Dev Central articles, any help is greatly appreciated.&nbsp;
Thanks&nbsp;

ngx_it_134965 · Answer

BIG-IP v11.5.1 is what I am running&nbsp;

niels_van_sluis · Answer

Try this:
when HTTP_REQUEST {
    if { !([string tolower [HTTP::host]] equals "dns.name.com") } {
        reject
    }
}

emad_26973 · Answer

Another Approach will be to add all virtual server IPs in a data group and write a generic irule to deny request, you can either reject or send HTML having access denied message e.g
ltm rule fqdn_access {
    when HTTP_REQUEST {
        if {[class match [HTTP::host] equals VIP_IPs] }{
                HTTP::respond 200 content {

Access Denied

We are sorry. Use FQDN to access.

}
            } 
    }
    }
    DataGroup
    ltm data-group internal VIP_IPs {
    records {
    33.33.33.33 { }
    33.33.33.34 { }
}
type string
}

ngx_it_134965 · Answer

Thank you very much everyone, the first one worked great for me :). &nbsp;

ngx_it_134965 · Answer

Thank you very much everyone, the first one worked great for me :). &nbsp;

Forum Discussion

Do not allow IP through https

Recent Discussions

AS3 Limitations

Diameter iRules attachment?

Help needed with iRule (connection closed log )

Use of SSL Decryption.

VLAN Failsafe Functionality

Related Content

HTTP Multipart and Security Implications

The HTTP/2 CONTINUATION frame attack

(HTTP) Redirection via Arbitrary Host Header

HTTP To HTTPS Redirect 301

Handling HTTP Requests on an HTTPS Virtual Server

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS