Forum Discussion

vikas_goel_1813's avatar
vikas_goel_1813
Icon for Nimbostratus rankNimbostratus
May 09, 2018

How to block embedded IP in http header

I have virtual server which is getting lot of traffic from malicious IP. We are doing X-forwarder on that virtual server. IP is embedded into http header . I need to block embedded IP and continue se...
application delivery
iRules
LTM
security
Kevin_Davies's avatar
Kevin_Davies
Icon for Nacreous rankNacreous
May 09, 2018

If the original IP address is not on the client side then try this.

when HTTP_REQUEST {
  if {[HTTP::header X-MS-Forwarded-Client-IP] starts_with "113.61.46.130" }
    drop
  }
}

If that works then build your iRule out from that logic. If you need the first field use getfield and comma as a delimiter.