Forum Discussion

Altostratus

Dec 12, 2011

HTTP iRule

I found this iRule on the DevCentral site at the following URL, http://devcentral.f5.com/wiki/iRule...eader.ashx It does exactly what I need it to do except work with HTTPS. How would I m...

Cirrostratus

Dec 12, 2011

Also note that that iRule would allow a malicious user to send HTTP traffic to any pool which ends with _pool configured on your LTM. From a security standpoint, it would be a lot safer to create a whitelist of allowed pool names and check that the parsed pool name is part of it before allowing the client to get to the pool. You could do this by defining the allowed pool names in a data group and then using the class command to look up the requested host in the data group.

http://devcentral.f5.com/wiki/iRules.class.ashx

Aaron

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

HTTP iRule

Recent Discussions

Reporting Help Needed

Switch ssl profile based on weak cipher detection via IRULE

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

full-proxy HTTP2

Related Content

Http redirection

http to https redirect irule with an exception

IRULE FOR HTTP to HTTPS REDIRECTION FOR ALL TRAFFIC EXPECT SOME URI

iRule - https redirect - Google rating

iRules to redirect traffic https to http as well as changing the URL

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS