Forum Discussion

Altocumulus

Nov 28, 2018

filter based on "User-Agent" , irule

I want permit traffic to a VIP only if the User-Agent matches "Chrome/52.0.2743.98" Does the below irule works?. Also i want to add logging. when HTTP_REQUEST { if {[HTTP::header "User-Agent"] ...

application delivery

iRules

PeteWhite

Employee

Nov 28, 2018

Yes, that iRule should do the job although it is a little blunt. You also want to consider whether contains is good enough or you should have exact matching.

Logging can be done locally to /var/log/ltm with the log command eg

log local0.debug "User Agent: [HTTP::header user-agent]"

but ideally you would do regular logging to a remote server via HSL.

You may also want to check if the User-Agent header exists - note that HTTP headers are non case sensitive.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

filter based on "User-Agent" , irule

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

F5 Academies Are Back – And We’re Coming to a City Near You

Recent Discussions

In F5 APM, how to include multiple DNS suffix?

Username is not filled in EdgeClient in the Modern customization

Cert Bundle Manager

Question regarding F5 Viprion Configuration Migration to VE.

Why does SSLO not support ACTIVE-ACTIVE mode deployments？

Related Content

Filtering traffic based on client ip address and URL

Demystifying Time-based OTP

Cookie-based DDoS protection

JA4 Part 2: Detecting and Mitigating Based on Dynamic JA4 Reputation

iRule based RADIUS Client Stack

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS