F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

cymru81's avatar
cymru81
Icon for Altocumulus rankAltocumulus
Nov 01, 2021

Filter request irule

Hi, is it possible to use an irule to block access (or redirect to a different address) if https://www.abc.com or https://www.abc.com/ was visited but still allow access to https://www.abc.com/123/ and any other sub-directories?

iRules
LTM
security

1 Reply

  • spalande's avatar
    spalande
    Icon for Nacreous rankNacreous
    Nov 03, 2021

    You can follow 2 approaches.

    Neagtive Security - Allows everything, and reject what I know

    when HTTP_REQUEST {
	 switch -glob [HTTP::uri] {
                "/" -
		"/abc"
		{
                      reject
		} 
		default {
		       return
		}
	}
}

    Positive Security - Rejects everything and allow only what I know

    when HTTP_REQUEST {
	 switch -glob [HTTP::uri] {
                "/123*" -
		"/234*"
		{
                    return
		} 
		 default {
		        drop
		}
	}
}