Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

N__197982's avatar
N__197982
Icon for Nimbostratus rankNimbostratus
8 years ago

forwarding requests to APM based on URI.

Folks, We are trying to forwarding requests to APM based on URI. If the F5 sees something like /support and /helpdesk in the URI it should forward the http request to the APM engine. If not, simply f...
application delivery
BIG-IP Access Policy Manager (APM)
irules
Faruk_AYDIN's avatar
Faruk_AYDIN
Icon for Altostratus rankAltostratus
8 years ago

Hi Guy,

Use this iRule : 
when HTTP_REQUEST {
        Check the requested HTTP uri
       switch -glob [string tolower [HTTP::uri]] {
              "/support*" -
              "/helpdesk*" {
                      Disable APM for these uri
                     ACCESS::disable
              }
              default {
                      Enable APM for all other uris
                     ACCESS::enable
              }
       }
}

Hope it helps

Please mark it as answer if it works

Regards

randylee168's avatar
randylee168
Icon for Nimbostratus rankNimbostratus
1 year ago

Thanks, we tried the above to disable the pre-defined access policy APM for  a few URLs:

but it keeps asking the credential again and again, it can not pass the login. any idea? thanks

 

 

  • Lucas_Thompson's avatar
    Lucas_Thompson
    Icon for Employee rankEmployee
    1 year ago

    By default if you put an access profile on a vip, it suppresses all of the HTTP_REQUEST events until after the session is started.

    You can turn that suppression off using this irule command:

    https://clouddocs.f5.com/api/irules/ACCESS__restrict_irule_events.html

     

    The reasoning about why it's like this is so that admins can re-use "non APM" irules on an APM virtual and have them work without modification.