Forum Discussion

Nimbostratus

Jun 21, 2011

HTTP VS: Only allow specific client IP but open specific /uri for all.

Hi, Currently I have an iRule on a HTTP VS that discards requests if the client IP is not in the allow class. Now I have to add an extra requirement to allow 'all' if a specific /uri is giv...

Historic F5 Account

Jun 21, 2011

You're not setting $allowed back to 0 anywhere outside of the CLIENT_ACCEPTED event. If someone goes to an authorized URI and gets it set to allowed, everything else will be allowed from then on. You'll need to add a bit to your code by setting a default case in your switch statement that sets allowed to 0 unless the IP is allowed.

Colin

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

HTTP VS: Only allow specific client IP but open specific /uri for all.

Recent Discussions

Reporting Help Needed

Switch ssl profile based on weak cipher detection via IRULE

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

full-proxy HTTP2

Related Content

check the utilization on specific node

SSL Offloading for specific IPs or range of IPs

OCSP HTTP Header Specification/Example or field name of EDIPI?

Assign specific uri to a server\node in pool

Find error/down/critical (specific) keyword from "specific log file", without searching whole file for keyword.

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS